Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/transmission-3.00/utils/remote.c
Examining data/transmission-3.00/utils/units.h
Examining data/transmission-3.00/utils/edit.c
Examining data/transmission-3.00/utils/show.c
Examining data/transmission-3.00/utils/create.c
Examining data/transmission-3.00/macosx/PrefsController.h
Examining data/transmission-3.00/macosx/FileOutlineView.h
Examining data/transmission-3.00/macosx/ColorTextField.h
Examining data/transmission-3.00/macosx/TorrentGroup.h
Examining data/transmission-3.00/macosx/URLSheetWindowController.h
Examining data/transmission-3.00/macosx/NSImageAdditions.h
Examining data/transmission-3.00/macosx/GlobalOptionsPopoverViewController.h
Examining data/transmission-3.00/macosx/InfoPeersViewController.h
Examining data/transmission-3.00/macosx/BadgeView.h
Examining data/transmission-3.00/macosx/InfoActivityViewController.h
Examining data/transmission-3.00/macosx/InfoGeneralViewController.h
Examining data/transmission-3.00/macosx/BlocklistDownloaderViewController.h
Examining data/transmission-3.00/macosx/FilterButton.h
Examining data/transmission-3.00/macosx/BonjourController.h
Examining data/transmission-3.00/macosx/StatusBarController.h
Examining data/transmission-3.00/macosx/GroupsController.h
Examining data/transmission-3.00/macosx/TorrentTableView.h
Examining data/transmission-3.00/macosx/CreatorWindowController.h
Examining data/transmission-3.00/macosx/NSMutableArrayAdditions.h
Examining data/transmission-3.00/macosx/ProgressGradients.h
Examining data/transmission-3.00/macosx/AddWindowController.h
Examining data/transmission-3.00/macosx/FileListNode.h
Examining data/transmission-3.00/macosx/TrackerNode.h
Examining data/transmission-3.00/macosx/InfoViewController.h
Examining data/transmission-3.00/macosx/ShareToolbarItem.h
Examining data/transmission-3.00/macosx/PortChecker.h
Examining data/transmission-3.00/macosx/TrackerCell.h
Examining data/transmission-3.00/macosx/PeerProgressIndicatorCell.h
Examining data/transmission-3.00/macosx/PrefsWindow.h
Examining data/transmission-3.00/macosx/ShareTorrentFileHelper.h
Examining data/transmission-3.00/macosx/InfoFileViewController.h
Examining data/transmission-3.00/macosx/Torrent.h
Examining data/transmission-3.00/macosx/FilterBarView.h
Examining data/transmission-3.00/macosx/InfoOptionsViewController.h
Examining data/transmission-3.00/macosx/WebSeedTableView.h
Examining data/transmission-3.00/macosx/StatsWindowController.h
Examining data/transmission-3.00/macosx/InfoTrackersViewController.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SPUURLRequest.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SUVersionComparisonProtocol.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SUErrors.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SUVersionDisplayProtocol.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SUCodeSigningVerifier.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SUUpdaterDelegate.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SPUDownloaderDelegate.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SUAppcastItem.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SPUDownloaderSession.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SUAppcast.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SPUDownloader.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SPUDownloadData.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SPUDownloaderDeprecated.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SUStandardVersionComparator.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SUUpdater.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SPUDownloaderProtocol.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/Sparkle.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/Headers/SUExport.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/Current/PrivateHeaders/SUUnarchiver.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SPUURLRequest.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SUVersionComparisonProtocol.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SUErrors.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SUVersionDisplayProtocol.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SUCodeSigningVerifier.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SUUpdaterDelegate.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SPUDownloaderDelegate.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SUAppcastItem.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SPUDownloaderSession.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SUAppcast.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SPUDownloader.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SPUDownloadData.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SPUDownloaderDeprecated.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SUStandardVersionComparator.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SUUpdater.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SPUDownloaderProtocol.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/Sparkle.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/Headers/SUExport.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Versions/A/PrivateHeaders/SUUnarchiver.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SPUURLRequest.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SUVersionComparisonProtocol.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SUErrors.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SUVersionDisplayProtocol.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SUCodeSigningVerifier.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SUUpdaterDelegate.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SPUDownloaderDelegate.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SUAppcastItem.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SPUDownloaderSession.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SUAppcast.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SPUDownloader.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SPUDownloadData.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SPUDownloaderDeprecated.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SUStandardVersionComparator.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SUUpdater.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SPUDownloaderProtocol.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/Sparkle.h
Examining data/transmission-3.00/macosx/Sparkle.framework/Headers/SUExport.h
Examining data/transmission-3.00/macosx/Sparkle.framework/PrivateHeaders/SUUnarchiver.h
Examining data/transmission-3.00/macosx/DragOverlayWindow.h
Examining data/transmission-3.00/macosx/FilePriorityCell.h
Examining data/transmission-3.00/macosx/Badger.h
Examining data/transmission-3.00/macosx/InfoTabButtonBack.h
Examining data/transmission-3.00/macosx/Controller.h
Examining data/transmission-3.00/macosx/ExpandedPathToPathTransformer.h
Examining data/transmission-3.00/macosx/PredicateEditorRowTemplateAny.h
Examining data/transmission-3.00/macosx/InfoTextField.h
Examining data/transmission-3.00/macosx/NSStringAdditions.h
Examining data/transmission-3.00/macosx/QuickLookPlugin/main.c
Examining data/transmission-3.00/macosx/ToolbarSegmentedCell.h
Examining data/transmission-3.00/macosx/GroupsPrefsController.h
Examining data/transmission-3.00/macosx/ButtonToolbarItem.h
Examining data/transmission-3.00/macosx/GroupToolbarItem.h
Examining data/transmission-3.00/macosx/NSApplicationAdditions.h
Examining data/transmission-3.00/macosx/BlocklistDownloader.h
Examining data/transmission-3.00/macosx/VDKQueue/VDKQueue.h
Examining data/transmission-3.00/macosx/TrackerTableView.h
Examining data/transmission-3.00/macosx/AboutWindowController.h
Examining data/transmission-3.00/macosx/MessageWindowController.h
Examining data/transmission-3.00/macosx/StatusBarView.h
Examining data/transmission-3.00/macosx/FilterBarController.h
Examining data/transmission-3.00/macosx/InfoWindowController.h
Examining data/transmission-3.00/macosx/FileNameCell.h
Examining data/transmission-3.00/macosx/PiecesView.h
Examining data/transmission-3.00/macosx/AddMagnetWindowController.h
Examining data/transmission-3.00/macosx/FileOutlineController.h
Examining data/transmission-3.00/macosx/TorrentCell.h
Examining data/transmission-3.00/macosx/BlocklistScheduler.h
Examining data/transmission-3.00/macosx/DragOverlayView.h
Examining data/transmission-3.00/macosx/ExpandedPathToIconTransformer.h
Examining data/transmission-3.00/macosx/InfoTabButtonCell.h
Examining data/transmission-3.00/macosx/FileRenameSheetController.h
Examining data/transmission-3.00/macosx/PeerTableView.h
Examining data/transmission-3.00/daemon/daemon-posix.c
Examining data/transmission-3.00/daemon/daemon.c
Examining data/transmission-3.00/daemon/daemon.h
Examining data/transmission-3.00/daemon/daemon-win32.c
Examining data/transmission-3.00/third-party/libutp/templates.h
Examining data/transmission-3.00/third-party/libutp/StdAfx.h
Examining data/transmission-3.00/third-party/libutp/utp_utils.cpp
Examining data/transmission-3.00/third-party/libutp/utypes.h
Examining data/transmission-3.00/third-party/libutp/utp_config.h
Examining data/transmission-3.00/third-party/libutp/utp.h
Examining data/transmission-3.00/third-party/libutp/utp_utils.h
Examining data/transmission-3.00/third-party/libutp/utp_config_example.h
Examining data/transmission-3.00/third-party/libutp/utp.cpp
Examining data/transmission-3.00/third-party/libb64/include/b64/cencode.h
Examining data/transmission-3.00/third-party/libb64/include/b64/cdecode.h
Examining data/transmission-3.00/third-party/libb64/include/b64/encode.h
Examining data/transmission-3.00/third-party/libb64/include/b64/decode.h
Examining data/transmission-3.00/third-party/libb64/src/cencode.c
Examining data/transmission-3.00/third-party/libb64/src/cdecode.c
Examining data/transmission-3.00/third-party/dht/dht.h
Examining data/transmission-3.00/third-party/dht/dht-example.c
Examining data/transmission-3.00/third-party/dht/dht.c
Examining data/transmission-3.00/third-party/macosx-libevent-config.h
Examining data/transmission-3.00/third-party/miniupnpc/minisoap.h
Examining data/transmission-3.00/third-party/miniupnpc/upnpdev.h
Examining data/transmission-3.00/third-party/miniupnpc/upnpcommands.h
Examining data/transmission-3.00/third-party/miniupnpc/portlistingparse.h
Examining data/transmission-3.00/third-party/miniupnpc/receivedata.c
Examining data/transmission-3.00/third-party/miniupnpc/connecthostport.c
Examining data/transmission-3.00/third-party/miniupnpc/minixml.h
Examining data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.h
Examining data/transmission-3.00/third-party/miniupnpc/minisoap.c
Examining data/transmission-3.00/third-party/miniupnpc/codelength.h
Examining data/transmission-3.00/third-party/miniupnpc/upnperrors.h
Examining data/transmission-3.00/third-party/miniupnpc/upnpcommands.c
Examining data/transmission-3.00/third-party/miniupnpc/receivedata.h
Examining data/transmission-3.00/third-party/miniupnpc/portlistingparse.c
Examining data/transmission-3.00/third-party/miniupnpc/connecthostport.h
Examining data/transmission-3.00/third-party/miniupnpc/miniupnpc_declspec.h
Examining data/transmission-3.00/third-party/miniupnpc/minissdpc.h
Examining data/transmission-3.00/third-party/miniupnpc/upnpreplyparse.c
Examining data/transmission-3.00/third-party/miniupnpc/miniupnpc.c
Examining data/transmission-3.00/third-party/miniupnpc/miniupnpc.h
Examining data/transmission-3.00/third-party/miniupnpc/miniupnpctypes.h
Examining data/transmission-3.00/third-party/miniupnpc/upnperrors.c
Examining data/transmission-3.00/third-party/miniupnpc/upnpreplyparse.h
Examining data/transmission-3.00/third-party/miniupnpc/miniwget.c
Examining data/transmission-3.00/third-party/miniupnpc/minissdpc.c
Examining data/transmission-3.00/third-party/miniupnpc/miniwget.h
Examining data/transmission-3.00/third-party/miniupnpc/minixml.c
Examining data/transmission-3.00/third-party/miniupnpc/upnpdev.c
Examining data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.c
Examining data/transmission-3.00/third-party/macosx-libevent-event-config.h
Examining data/transmission-3.00/third-party/libnatpmp/wingettimeofday.h
Examining data/transmission-3.00/third-party/libnatpmp/natpmp.c
Examining data/transmission-3.00/third-party/libnatpmp/getgateway.c
Examining data/transmission-3.00/third-party/libnatpmp/natpmp_declspec.h
Examining data/transmission-3.00/third-party/libnatpmp/getgateway.h
Examining data/transmission-3.00/third-party/libnatpmp/wingettimeofday.c
Examining data/transmission-3.00/third-party/libnatpmp/natpmp.h
Examining data/transmission-3.00/qt/StatsDialog.h
Examining data/transmission-3.00/qt/RpcClient.h
Examining data/transmission-3.00/qt/Typedefs.h
Examining data/transmission-3.00/qt/RpcQueue.h
Examining data/transmission-3.00/qt/IconToolButton.cc
Examining data/transmission-3.00/qt/FileTreeModel.cc
Examining data/transmission-3.00/qt/RelocateDialog.h
Examining data/transmission-3.00/qt/SqueezeLabel.h
Examining data/transmission-3.00/qt/IconToolButton.h
Examining data/transmission-3.00/qt/Torrent.cc
Examining data/transmission-3.00/qt/TorrentDelegate.h
Examining data/transmission-3.00/qt/TrackerModel.h
Examining data/transmission-3.00/qt/DBusInteropHelper.cc
Examining data/transmission-3.00/qt/OptionsDialog.h
Examining data/transmission-3.00/qt/RelocateDialog.cc
Examining data/transmission-3.00/qt/TorrentView.h
Examining data/transmission-3.00/qt/FilterBarComboBox.cc
Examining data/transmission-3.00/qt/TorrentFilter.h
Examining data/transmission-3.00/qt/FileTreeView.h
Examining data/transmission-3.00/qt/FileTreeModel.h
Examining data/transmission-3.00/qt/LicenseDialog.cc
Examining data/transmission-3.00/qt/TorrentDelegateMin.h
Examining data/transmission-3.00/qt/ComInteropHelper.cc
Examining data/transmission-3.00/qt/CustomVariantType.h
Examining data/transmission-3.00/qt/ColumnResizer.cc
Examining data/transmission-3.00/qt/FilterBar.h
Examining data/transmission-3.00/qt/Prefs.cc
Examining data/transmission-3.00/qt/FreeSpaceLabel.h
Examining data/transmission-3.00/qt/Application.h
Examining data/transmission-3.00/qt/TorrentView.cc
Examining data/transmission-3.00/qt/Prefs.h
Examining data/transmission-3.00/qt/AboutDialog.h
Examining data/transmission-3.00/qt/Filters.cc
Examining data/transmission-3.00/qt/SessionDialog.h
Examining data/transmission-3.00/qt/TorrentFilter.cc
Examining data/transmission-3.00/qt/FaviconCache.cc
Examining data/transmission-3.00/qt/TorrentModel.h
Examining data/transmission-3.00/qt/TrackerModelFilter.cc
Examining data/transmission-3.00/qt/InteropHelper.cc
Examining data/transmission-3.00/qt/TrackerDelegate.cc
Examining data/transmission-3.00/qt/Torrent.h
Examining data/transmission-3.00/qt/TrackerDelegate.h
Examining data/transmission-3.00/qt/FileTreeItem.cc
Examining data/transmission-3.00/qt/FileTreeDelegate.cc
Examining data/transmission-3.00/qt/Utils.cc
Examining data/transmission-3.00/qt/Filters.h
Examining data/transmission-3.00/qt/TorrentDelegateMin.cc
Examining data/transmission-3.00/qt/BaseDialog.h
Examining data/transmission-3.00/qt/StyleHelper.h
Examining data/transmission-3.00/qt/DBusInteropHelper.h
Examining data/transmission-3.00/qt/LicenseDialog.h
Examining data/transmission-3.00/qt/AddData.h
Examining data/transmission-3.00/qt/Session.cc
Examining data/transmission-3.00/qt/InteropHelper.h
Examining data/transmission-3.00/qt/FilterBar.cc
Examining data/transmission-3.00/qt/StyleHelper.cc
Examining data/transmission-3.00/qt/DetailsDialog.cc
Examining data/transmission-3.00/qt/MakeDialog.h
Examining data/transmission-3.00/qt/FaviconCache.h
Examining data/transmission-3.00/qt/AboutDialog.cc
Examining data/transmission-3.00/qt/OptionsDialog.cc
Examining data/transmission-3.00/qt/Formatter.h
Examining data/transmission-3.00/qt/FreeSpaceLabel.cc
Examining data/transmission-3.00/qt/FileTreeDelegate.h
Examining data/transmission-3.00/qt/FilterBarComboBoxDelegate.h
Examining data/transmission-3.00/qt/SessionDialog.cc
Examining data/transmission-3.00/qt/PrefsDialog.cc
Examining data/transmission-3.00/qt/TorrentDelegate.cc
Examining data/transmission-3.00/qt/InteropObject.cc
Examining data/transmission-3.00/qt/Application.cc
Examining data/transmission-3.00/qt/Session.h
Examining data/transmission-3.00/qt/MakeDialog.cc
Examining data/transmission-3.00/qt/TrackerModel.cc
Examining data/transmission-3.00/qt/WatchDir.cc
Examining data/transmission-3.00/qt/PathButton.h
Examining data/transmission-3.00/qt/FilterBarComboBoxDelegate.cc
Examining data/transmission-3.00/qt/FileTreeItem.h
Examining data/transmission-3.00/qt/ColumnResizer.h
Examining data/transmission-3.00/qt/ComInteropHelper.h
Examining data/transmission-3.00/qt/InteropObject.h
Examining data/transmission-3.00/qt/WatchDir.h
Examining data/transmission-3.00/qt/FileTreeView.cc
Examining data/transmission-3.00/qt/Utils.h
Examining data/transmission-3.00/qt/StatsDialog.cc
Examining data/transmission-3.00/qt/RpcQueue.cc
Examining data/transmission-3.00/qt/MainWindow.cc
Examining data/transmission-3.00/qt/PrefsDialog.h
Examining data/transmission-3.00/qt/FilterBarComboBox.h
Examining data/transmission-3.00/qt/MainWindow.h
Examining data/transmission-3.00/qt/PathButton.cc
Examining data/transmission-3.00/qt/SqueezeLabel.cc
Examining data/transmission-3.00/qt/TrackerModelFilter.h
Examining data/transmission-3.00/qt/DetailsDialog.h
Examining data/transmission-3.00/qt/TorrentModel.cc
Examining data/transmission-3.00/qt/RpcClient.cc
Examining data/transmission-3.00/qt/Speed.h
Examining data/transmission-3.00/qt/AddData.cc
Examining data/transmission-3.00/qt/Formatter.cc
Examining data/transmission-3.00/libtransmission/watchdir-win32.c
Examining data/transmission-3.00/libtransmission/rename-test.c
Examining data/transmission-3.00/libtransmission/crypto-utils.h
Examining data/transmission-3.00/libtransmission/makemeta.h
Examining data/transmission-3.00/libtransmission/bandwidth.c
Examining data/transmission-3.00/libtransmission/jsonsl.c
Examining data/transmission-3.00/libtransmission/clients.h
Examining data/transmission-3.00/libtransmission/watchdir-kqueue.c
Examining data/transmission-3.00/libtransmission/utils.h
Examining data/transmission-3.00/libtransmission/crypto-utils-fallback.c
Examining data/transmission-3.00/libtransmission/announcer-http.c
Examining data/transmission-3.00/libtransmission/tr-lpd.c
Examining data/transmission-3.00/libtransmission/trevent.c
Examining data/transmission-3.00/libtransmission/jsonsl.h
Examining data/transmission-3.00/libtransmission/peer-mgr.h
Examining data/transmission-3.00/libtransmission/file-win32.c
Examining data/transmission-3.00/libtransmission/clients.c
Examining data/transmission-3.00/libtransmission/rpcimpl.h
Examining data/transmission-3.00/libtransmission/watchdir.h
Examining data/transmission-3.00/libtransmission/session.h
Examining data/transmission-3.00/libtransmission/platform.h
Examining data/transmission-3.00/libtransmission/trevent.h
Examining data/transmission-3.00/libtransmission/ptrarray.c
Examining data/transmission-3.00/libtransmission/peer-msgs-test.c
Examining data/transmission-3.00/libtransmission/session-id.c
Examining data/transmission-3.00/libtransmission/upnp.c
Examining data/transmission-3.00/libtransmission/quark.h
Examining data/transmission-3.00/libtransmission/peer-io.c
Examining data/transmission-3.00/libtransmission/history.c
Examining data/transmission-3.00/libtransmission/crypto.h
Examining data/transmission-3.00/libtransmission/metainfo.h
Examining data/transmission-3.00/libtransmission/metainfo-test.c
Examining data/transmission-3.00/libtransmission/crypto.c
Examining data/transmission-3.00/libtransmission/natpmp.c
Examining data/transmission-3.00/libtransmission/watchdir-generic.c
Examining data/transmission-3.00/libtransmission/transmission.h
Examining data/transmission-3.00/libtransmission/variant-json.c
Examining data/transmission-3.00/libtransmission/peer-io.h
Examining data/transmission-3.00/libtransmission/verify.c
Examining data/transmission-3.00/libtransmission/variant.c
Examining data/transmission-3.00/libtransmission/fdlimit.c
Examining data/transmission-3.00/libtransmission/cache.c
Examining data/transmission-3.00/libtransmission/tr-udp.c
Examining data/transmission-3.00/libtransmission/session-test.c
Examining data/transmission-3.00/libtransmission/completion.h
Examining data/transmission-3.00/libtransmission/torrent-ctor.c
Examining data/transmission-3.00/libtransmission/tr-utp.c
Examining data/transmission-3.00/libtransmission/file-test.c
Examining data/transmission-3.00/libtransmission/list.c
Examining data/transmission-3.00/libtransmission/platform.c
Examining data/transmission-3.00/libtransmission/utils-test.c
Examining data/transmission-3.00/libtransmission/port-forwarding.h
Examining data/transmission-3.00/libtransmission/stats.h
Examining data/transmission-3.00/libtransmission/bitfield-test.c
Examining data/transmission-3.00/libtransmission/crypto-utils-cyassl.c
Examining data/transmission-3.00/libtransmission/peer-msgs.h
Examining data/transmission-3.00/libtransmission/web.h
Examining data/transmission-3.00/libtransmission/crypto-utils.c
Examining data/transmission-3.00/libtransmission/fdlimit.h
Examining data/transmission-3.00/libtransmission/resume.h
Examining data/transmission-3.00/libtransmission/peer-common.h
Examining data/transmission-3.00/libtransmission/tr-udp.h
Examining data/transmission-3.00/libtransmission/net.h
Examining data/transmission-3.00/libtransmission/makemeta.c
Examining data/transmission-3.00/libtransmission/error-types.h
Examining data/transmission-3.00/libtransmission/net.c
Examining data/transmission-3.00/libtransmission/move-test.c
Examining data/transmission-3.00/libtransmission/tr-macros.h
Examining data/transmission-3.00/libtransmission/torrent.h
Examining data/transmission-3.00/libtransmission/handshake.h
Examining data/transmission-3.00/libtransmission/handshake.c
Examining data/transmission-3.00/libtransmission/error-test.c
Examining data/transmission-3.00/libtransmission/peer-mgr.c
Examining data/transmission-3.00/libtransmission/tr-utp.h
Examining data/transmission-3.00/libtransmission/quark.c
Examining data/transmission-3.00/libtransmission/error.h
Examining data/transmission-3.00/libtransmission/announcer.c
Examining data/transmission-3.00/libtransmission/torrent-magnet.h
Examining data/transmission-3.00/libtransmission/variant-benc.c
Examining data/transmission-3.00/libtransmission/upnp.h
Examining data/transmission-3.00/libtransmission/verify.h
Examining data/transmission-3.00/libtransmission/libtransmission-test.c
Examining data/transmission-3.00/libtransmission/stats.c
Examining data/transmission-3.00/libtransmission/json-test.c
Examining data/transmission-3.00/libtransmission/history.h
Examining data/transmission-3.00/libtransmission/session-id.h
Examining data/transmission-3.00/libtransmission/error.c
Examining data/transmission-3.00/libtransmission/tr-lpd.h
Examining data/transmission-3.00/libtransmission/file.c
Examining data/transmission-3.00/libtransmission/makemeta-test.c
Examining data/transmission-3.00/libtransmission/cache.h
Examining data/transmission-3.00/libtransmission/version.h
Examining data/transmission-3.00/libtransmission/metainfo.c
Examining data/transmission-3.00/libtransmission/announcer-udp.c
Examining data/transmission-3.00/libtransmission/announcer.h
Examining data/transmission-3.00/libtransmission/crypto-test-ref.h
Examining data/transmission-3.00/libtransmission/watchdir-inotify.c
Examining data/transmission-3.00/libtransmission/crypto-utils-openssl.c
Examining data/transmission-3.00/libtransmission/torrent.c
Examining data/transmission-3.00/libtransmission/subprocess-test.c
Examining data/transmission-3.00/libtransmission/libtransmission-test.h
Examining data/transmission-3.00/libtransmission/quark-test.c
Examining data/transmission-3.00/libtransmission/rpcimpl.c
Examining data/transmission-3.00/libtransmission/ptrarray.h
Examining data/transmission-3.00/libtransmission/variant.h
Examining data/transmission-3.00/libtransmission/session.c
Examining data/transmission-3.00/libtransmission/list.h
Examining data/transmission-3.00/libtransmission/tr-assert.h
Examining data/transmission-3.00/libtransmission/bitfield.c
Examining data/transmission-3.00/libtransmission/log.c
Examining data/transmission-3.00/libtransmission/magnet.c
Examining data/transmission-3.00/libtransmission/peer-socket.h
Examining data/transmission-3.00/libtransmission/magnet.h
Examining data/transmission-3.00/libtransmission/subprocess.h
Examining data/transmission-3.00/libtransmission/watchdir-common.h
Examining data/transmission-3.00/libtransmission/clients-test.c
Examining data/transmission-3.00/libtransmission/webseed.h
Examining data/transmission-3.00/libtransmission/tr-getopt-test.c
Examining data/transmission-3.00/libtransmission/resume.c
Examining data/transmission-3.00/libtransmission/platform-quota.h
Examining data/transmission-3.00/libtransmission/subprocess-win32.c
Examining data/transmission-3.00/libtransmission/crypto-utils-polarssl.c
Examining data/transmission-3.00/libtransmission/bandwidth.h
Examining data/transmission-3.00/libtransmission/utils.c
Examining data/transmission-3.00/libtransmission/file-posix.c
Examining data/transmission-3.00/libtransmission/magnet-test.c
Examining data/transmission-3.00/libtransmission/rpc-test.c
Examining data/transmission-3.00/libtransmission/webseed.c
Examining data/transmission-3.00/libtransmission/tr-dht.h
Examining data/transmission-3.00/libtransmission/port-forwarding.c
Examining data/transmission-3.00/libtransmission/bitfield.h
Examining data/transmission-3.00/libtransmission/natpmp_local.h
Examining data/transmission-3.00/libtransmission/subprocess-posix.c
Examining data/transmission-3.00/libtransmission/torrent-magnet.c
Examining data/transmission-3.00/libtransmission/inout.h
Examining data/transmission-3.00/libtransmission/watchdir-test.c
Examining data/transmission-3.00/libtransmission/ConvertUTF.h
Examining data/transmission-3.00/libtransmission/blocklist-test.c
Examining data/transmission-3.00/libtransmission/blocklist.c
Examining data/transmission-3.00/libtransmission/watchdir.c
Examining data/transmission-3.00/libtransmission/file.h
Examining data/transmission-3.00/libtransmission/rpc-server.h
Examining data/transmission-3.00/libtransmission/inout.c
Examining data/transmission-3.00/libtransmission/tr-dht.c
Examining data/transmission-3.00/libtransmission/tr-getopt.c
Examining data/transmission-3.00/libtransmission/crypto-test.c
Examining data/transmission-3.00/libtransmission/log.h
Examining data/transmission-3.00/libtransmission/peer-msgs.c
Examining data/transmission-3.00/libtransmission/tr-getopt.h
Examining data/transmission-3.00/libtransmission/blocklist.h
Examining data/transmission-3.00/libtransmission/ConvertUTF.c
Examining data/transmission-3.00/libtransmission/history-test.c
Examining data/transmission-3.00/libtransmission/variant-common.h
Examining data/transmission-3.00/libtransmission/completion.c
Examining data/transmission-3.00/libtransmission/variant-test.c
Examining data/transmission-3.00/libtransmission/announcer-common.h
Examining data/transmission-3.00/libtransmission/web.c
Examining data/transmission-3.00/libtransmission/wildmat.c
Examining data/transmission-3.00/libtransmission/rpc-server.c
Examining data/transmission-3.00/libtransmission/tr-assert.c
Examining data/transmission-3.00/libtransmission/platform-quota.c
Examining data/transmission-3.00/cli/cli.c
Examining data/transmission-3.00/gtk/notify.h
Examining data/transmission-3.00/gtk/util.c
Examining data/transmission-3.00/gtk/actions.c
Examining data/transmission-3.00/gtk/icons.c
Examining data/transmission-3.00/gtk/makemeta-ui.h
Examining data/transmission-3.00/gtk/tr-prefs.c
Examining data/transmission-3.00/gtk/util.h
Examining data/transmission-3.00/gtk/dialogs.c
Examining data/transmission-3.00/gtk/conf.h
Examining data/transmission-3.00/gtk/favicon.h
Examining data/transmission-3.00/gtk/relocate.c
Examining data/transmission-3.00/gtk/details.c
Examining data/transmission-3.00/gtk/open-dialog.c
Examining data/transmission-3.00/gtk/hig.h
Examining data/transmission-3.00/gtk/stats.h
Examining data/transmission-3.00/gtk/tr-window.c
Examining data/transmission-3.00/gtk/notify.c
Examining data/transmission-3.00/gtk/makemeta-ui.c
Examining data/transmission-3.00/gtk/torrent-cell-renderer.h
Examining data/transmission-3.00/gtk/actions.h
Examining data/transmission-3.00/gtk/file-list.h
Examining data/transmission-3.00/gtk/details.h
Examining data/transmission-3.00/gtk/tr-core.c
Examining data/transmission-3.00/gtk/conf.c
Examining data/transmission-3.00/gtk/stats.c
Examining data/transmission-3.00/gtk/torrent-cell-renderer.c
Examining data/transmission-3.00/gtk/msgwin.h
Examining data/transmission-3.00/gtk/open-dialog.h
Examining data/transmission-3.00/gtk/tr-core.h
Examining data/transmission-3.00/gtk/transmission-resources.h
Examining data/transmission-3.00/gtk/tr-window.h
Examining data/transmission-3.00/gtk/tr-icon.h
Examining data/transmission-3.00/gtk/filter.c
Examining data/transmission-3.00/gtk/icons.h
Examining data/transmission-3.00/gtk/msgwin.c
Examining data/transmission-3.00/gtk/relocate.h
Examining data/transmission-3.00/gtk/tr-prefs.h
Examining data/transmission-3.00/gtk/dialogs.h
Examining data/transmission-3.00/gtk/file-list.c
Examining data/transmission-3.00/gtk/transmission-resources.c
Examining data/transmission-3.00/gtk/favicon.c
Examining data/transmission-3.00/gtk/main.c
Examining data/transmission-3.00/gtk/hig.c
Examining data/transmission-3.00/gtk/filter.h
Examining data/transmission-3.00/gtk/tr-icon.c
FINAL RESULTS:
data/transmission-3.00/libtransmission/crypto-utils-cyassl.c:24:33: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
#include API_HEADER_CRYPT(error-crypt.h)
data/transmission-3.00/libtransmission/file-posix.c:260:16: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
bool ret = access(path, F_OK) != -1;
data/transmission-3.00/libtransmission/file-posix.c:1172:11: [4] (tmpfile) mktemp:
Temporary file race condition (CWE-377).
ret = mktemp(path_template) != NULL && mkdir(path_template, 0700) != -1;
data/transmission-3.00/libtransmission/file-win32.c:229:56: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
static tr_sys_file_t open_file(char const* path, DWORD access, DWORD disposition, DWORD flags, tr_error** error)
data/transmission-3.00/libtransmission/file-win32.c:238:38: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
ret = CreateFileW(wide_path, access, FILE_SHARE_READ | FILE_SHARE_WRITE | FILE_SHARE_DELETE, NULL, disposition, flags,
data/transmission-3.00/libtransmission/jsonsl.c:919:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(my_copy, path);
data/transmission-3.00/libtransmission/jsonsl.c:957:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ret->orig, path);
data/transmission-3.00/libtransmission/subprocess-posix.c:74:9: [4] (shell) execvp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (execvp(cmd[0], cmd) == -1)
data/transmission-3.00/libtransmission/subprocess-win32.c:259:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(*arguments + arguments_len, argument);
data/transmission-3.00/libtransmission/tr-assert.c:23:5: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(stderr, message_fmt, args);
data/transmission-3.00/libtransmission/tr-getopt.c:140:5: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(description, progName);
data/transmission-3.00/libtransmission/tr-lpd.c:187:9: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
if (sscanf(s, "BT-SEARCH * HTTP/%d.%d" CRLF, &major, &minor) != 2)
data/transmission-3.00/libtransmission/tr-macros.h:99:61: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define TR_GNUC_PRINTF(fmt, args) __attribute__((__format__(printf, fmt, args)))
data/transmission-3.00/libtransmission/web.c:48:26: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define dbgmsg(fmt, ...) fprintf(stderr, fmt "\n", __VA_ARGS__)
data/transmission-3.00/third-party/dht/dht-example.c:505:26: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
strncpy(hash_return, crypt(key, "jc"), hash_size);
data/transmission-3.00/third-party/dht/dht.c:99:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/dht/dht.c:99:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/dht/dht.c:330:29: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
__attribute__ ((format (printf, 1, 2)))
data/transmission-3.00/third-party/dht/dht.c:338:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(dht_debug, format, args);
data/transmission-3.00/third-party/libutp/utp_config.h:27:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/libutp/utp_config.h:27:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/libutp/utp_config_example.h:21:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/libutp/utp_config_example.h:21:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/miniupnpc/connecthostport.c:21:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/miniupnpc/connecthostport.c:21:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/miniupnpc/minisoap.c:15:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/miniupnpc/minisoap.c:15:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:24:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:24:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:719:7: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
n = snprintf(bufr, sizeof(bufr),
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:18:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:18:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/miniupnpc/miniwget.c:18:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/third-party/miniupnpc/miniwget.c:18:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/transmission-3.00/utils/create.c:146:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MY_NAME " " LONG_VERSION_STRING "\n");
data/transmission-3.00/utils/edit.c:320:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MY_NAME " " LONG_VERSION_STRING "\n");
data/transmission-3.00/utils/remote.c:978:25: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(i == 0 ? "%s" : ", %s", str);
data/transmission-3.00/utils/show.c:344:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MY_NAME " " LONG_VERSION_STRING "\n");
data/transmission-3.00/gtk/conf.c:83:53: [3] (buffer) g_get_home_dir:
This function is synonymous with 'getenv("HOME")';it returns untrustable
input if the environment can beset by an attacker. It can have any content
and length, and the same variable can be set more than once (CWE-807,
CWE-20). Check environment variables carefully before using them.
tr_variantDictAddStr(d, TR_KEY_open_dialog_dir, g_get_home_dir());
data/transmission-3.00/libtransmission/crypto-utils-cyassl.c:25:27: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
#include API_HEADER_CRYPT(random.h)
data/transmission-3.00/libtransmission/crypto-utils.c:111:9: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand(tr_time_msec());
data/transmission-3.00/libtransmission/file-posix.c:347:15: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
ret = realpath(path, NULL);
data/transmission-3.00/libtransmission/file-posix.c:355:15: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
ret = realpath(path, tmp);
data/transmission-3.00/libtransmission/platform.c:163:5: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
InitializeCriticalSection(&l->lock); /* supports recursion */
data/transmission-3.00/libtransmission/platform.c:191:5: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection(&l->lock);
data/transmission-3.00/libtransmission/session.c:1328:67: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void tr_sessionSetPeerPortRandomOnStart(tr_session* session, bool random)
data/transmission-3.00/libtransmission/session.c:1332:29: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
session->isPortRandom = random;
data/transmission-3.00/libtransmission/transmission.h:491:67: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void tr_sessionSetPeerPortRandomOnStart(tr_session* session, bool random);
data/transmission-3.00/libtransmission/utils.c:2122:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
return getenv(key) != NULL;
data/transmission-3.00/libtransmission/utils.c:2141:25: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char const* value = getenv(key);
data/transmission-3.00/libtransmission/utils.c:2190:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* value = getenv(key);
data/transmission-3.00/third-party/dht/dht-example.c:140:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
opt = getopt(argc, argv, "q46b:i:");
data/transmission-3.00/third-party/dht/dht-example.c:212:9: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srandom(seed);
data/transmission-3.00/third-party/dht/dht-example.c:356:20: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
usleep(random() % 10000);
data/transmission-3.00/third-party/dht/dht-example.c:358:29: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
usleep(500000 + random() % 400000);
data/transmission-3.00/third-party/dht/dht-example.c:365:22: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
tv.tv_usec = random() % 1000000;
data/transmission-3.00/third-party/dht/dht.c:87:1: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(void)
data/transmission-3.00/third-party/dht/dht.c:536:10: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
nn = random() % b->count;
data/transmission-3.00/third-party/dht/dht.c:577:27: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
id_return[bit / 8] |= random() & 0xFF >> (bit % 8);
data/transmission-3.00/third-party/dht/dht.c:579:24: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
id_return[i] = random() & 0xFF;
data/transmission-3.00/third-party/dht/dht.c:997:44: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
expire_stuff_time = now.tv_sec + 120 + random() % 240;
data/transmission-3.00/third-party/dht/dht.c:1536:46: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
rotate_secrets_time = now.tv_sec + 900 + random() % 1800;
data/transmission-3.00/third-party/dht/dht.c:1793:39: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
confirm_nodes_time = now.tv_sec + random() % 3;
data/transmission-3.00/third-party/dht/dht.c:1795:17: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
search_id = random() & 0xFFFF;
data/transmission-3.00/third-party/dht/dht.c:1903:14: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
id[19] = random() & 0xFF;
data/transmission-3.00/third-party/dht/dht.c:1905:38: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if(q->next && (q->count == 0 || (random() & 7) == 0))
data/transmission-3.00/third-party/dht/dht.c:1907:26: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if(q->count == 0 || (random() & 7) == 0) {
data/transmission-3.00/third-party/dht/dht.c:1961:46: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if(q->next && (q->count == 0 || (random() & 7) == 0))
data/transmission-3.00/third-party/dht/dht.c:1963:34: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if(q->count == 0 || (random() & 7) == 0) {
data/transmission-3.00/third-party/dht/dht.c:1985:33: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
else if(random() % 37 == 0)
data/transmission-3.00/third-party/dht/dht.c:2301:45: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
DHT_SEARCH_RETRANSMIT + random() % DHT_SEARCH_RETRANSMIT;
data/transmission-3.00/third-party/dht/dht.c:2329:51: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
confirm_nodes_time = now.tv_sec + 5 + random() % 10;
data/transmission-3.00/third-party/dht/dht.c:2331:52: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
confirm_nodes_time = now.tv_sec + 60 + random() % 120;
data/transmission-3.00/third-party/dht/dht.c:2605:14: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
j0 = random() % st->numpeers;
data/transmission-3.00/cli/cli.c:158:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char upStr[80];
data/transmission-3.00/cli/cli.c:159:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dnStr[80];
data/transmission-3.00/cli/cli.c:160:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ratioStr[80];
data/transmission-3.00/cli/cli.c:172:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char upStr[80];
data/transmission-3.00/cli/cli.c:173:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ratioStr[80];
data/transmission-3.00/cli/cli.c:335:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[LINEWIDTH];
data/transmission-3.00/cli/cli.c:416:62: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(d, TR_KEY_speed_limit_down, atoi(optarg));
data/transmission-3.00/cli/cli.c:441:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(d, TR_KEY_peer_port, atoi(optarg));
data/transmission-3.00/cli/cli.c:445:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(d, TR_KEY_peer_socket_tos, atoi(optarg));
data/transmission-3.00/cli/cli.c:449:60: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(d, TR_KEY_speed_limit_up, atoi(optarg));
data/transmission-3.00/daemon/daemon-posix.c:197:28: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int const fd = open("/dev/null", O_RDWR, 0);
data/transmission-3.00/daemon/daemon.c:263:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timestr[64];
data/transmission-3.00/daemon/daemon.c:444:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(settings, TR_KEY_rpc_port, atoi(optarg));
data/transmission-3.00/daemon/daemon.c:468:62: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(settings, TR_KEY_peer_port, atoi(optarg));
data/transmission-3.00/daemon/daemon.c:480:70: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(settings, TR_KEY_peer_limit_global, atoi(optarg));
data/transmission-3.00/daemon/daemon.c:484:75: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(settings, TR_KEY_peer_limit_per_torrent, atoi(optarg));
data/transmission-3.00/daemon/daemon.c:634:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/transmission-3.00/daemon/daemon.c:870:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/transmission-3.00/gtk/details.c:509:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/gtk/details.c:648:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/transmission-3.00/gtk/details.c:667:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/gtk/details.c:889:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sizebuf[128];
data/transmission-3.00/gtk/details.c:917:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char piecebuf[128];
data/transmission-3.00/gtk/details.c:955:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[32];
data/transmission-3.00/gtk/details.c:956:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unver[64];
data/transmission-3.00/gtk/details.c:957:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char total[64];
data/transmission-3.00/gtk/details.c:958:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char avail[32];
data/transmission-3.00/gtk/details.c:994:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dbuf[64];
data/transmission-3.00/gtk/details.c:995:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fbuf[64];
data/transmission-3.00/gtk/details.c:1029:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char upstr[64];
data/transmission-3.00/gtk/details.c:1030:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ratiostr[64];
data/transmission-3.00/gtk/details.c:1120:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[128];
data/transmission-3.00/gtk/details.c:1394:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char collated_name[128];
data/transmission-3.00/gtk/details.c:1423:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char up_speed[64] = { '\0' };
data/transmission-3.00/gtk/details.c:1424:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char down_speed[64] = { '\0' };
data/transmission-3.00/gtk/details.c:1425:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char up_count[64] = { '\0' };
data/transmission-3.00/gtk/details.c:1426:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char down_count[64] = { '\0' };
data/transmission-3.00/gtk/details.c:1427:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blocks_to_peer[64] = { '\0' };
data/transmission-3.00/gtk/details.c:1428:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blocks_to_client[64] = { '\0' };
data/transmission-3.00/gtk/details.c:1429:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cancelled_by_peer[64] = { '\0' };
data/transmission-3.00/gtk/details.c:1430:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cancelled_by_client[64] = { '\0' };
data/transmission-3.00/gtk/details.c:1532:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[128];
data/transmission-3.00/gtk/details.c:1556:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[128];
data/transmission-3.00/gtk/details.c:1635:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[256];
data/transmission-3.00/gtk/details.c:1663:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/gtk/details.c:1664:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[256];
data/transmission-3.00/gtk/details.c:2120:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timebuf[256];
data/transmission-3.00/gtk/details.c:2990:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char title[256];
data/transmission-3.00/gtk/favicon.c:19:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char const* image_types[IMAGE_TYPES] = { "ico", "png", "gif", "jpg" };
data/transmission-3.00/gtk/favicon.c:158:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char host[1024];
data/transmission-3.00/gtk/file-list.c:210:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char size_str[64];
data/transmission-3.00/gtk/file-list.c:444:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char size_str[64];
data/transmission-3.00/gtk/filter.c:151:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/transmission-3.00/gtk/filter.c:357:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/transmission-3.00/gtk/filter.c:432:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[1024];
data/transmission-3.00/gtk/filter.c:839:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/gtk/hig.c:41:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/gtk/makemeta-ui.c:110:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sizebuf[128];
data/transmission-3.00/gtk/makemeta-ui.c:308:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/gtk/msgwin.c:126:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/transmission-3.00/gtk/msgwin.c:142:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* fp = fopen(filename, "w+");
data/transmission-3.00/gtk/msgwin.c:266:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/transmission-3.00/gtk/open-dialog.c:36:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[64];
data/transmission-3.00/gtk/open-dialog.c:79:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[64];
data/transmission-3.00/gtk/stats.c:46:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/gtk/stats.c:54:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/gtk/torrent-cell-renderer.c:44:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[32];
data/transmission-3.00/gtk/torrent-cell-renderer.c:45:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[32];
data/transmission-3.00/gtk/torrent-cell-renderer.c:46:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf3[32];
data/transmission-3.00/gtk/torrent-cell-renderer.c:47:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf4[32];
data/transmission-3.00/gtk/torrent-cell-renderer.c:48:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf5[32];
data/transmission-3.00/gtk/torrent-cell-renderer.c:49:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf6[32];
data/transmission-3.00/gtk/torrent-cell-renderer.c:139:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timestr[128];
data/transmission-3.00/gtk/torrent-cell-renderer.c:156:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dnStr[32];
data/transmission-3.00/gtk/torrent-cell-renderer.c:157:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char upStr[32];
data/transmission-3.00/gtk/torrent-cell-renderer.c:167:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char upStr[32];
data/transmission-3.00/gtk/torrent-cell-renderer.c:214:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char speedStr[64];
data/transmission-3.00/gtk/torrent-cell-renderer.c:215:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ratioStr[64];
data/transmission-3.00/gtk/torrent-cell-renderer.c:298:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/transmission-3.00/gtk/tr-core.c:976:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/transmission-3.00/gtk/tr-icon.c:52:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char up[64];
data/transmission-3.00/gtk/tr-icon.c:53:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char upLimit[64];
data/transmission-3.00/gtk/tr-icon.c:54:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char down[64];
data/transmission-3.00/gtk/tr-icon.c:55:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char downLimit[64];
data/transmission-3.00/gtk/tr-icon.c:56:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tip[1024];
data/transmission-3.00/gtk/tr-icon.c:78:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/transmission-3.00/gtk/tr-icon.c:100:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/transmission-3.00/gtk/tr-prefs.c:409:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[512];
data/transmission-3.00/gtk/tr-prefs.c:410:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[512];
data/transmission-3.00/gtk/tr-prefs.c:909:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/gtk/tr-prefs.c:968:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/gtk/tr-window.c:245:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char u[32];
data/transmission-3.00/gtk/tr-window.c:246:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[32];
data/transmission-3.00/gtk/tr-window.c:305:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/gtk/tr-window.c:306:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timebuf[64];
data/transmission-3.00/gtk/tr-window.c:401:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/gtk/tr-window.c:468:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/gtk/tr-window.c:510:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[512];
data/transmission-3.00/gtk/tr-window.c:511:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[512];
data/transmission-3.00/gtk/tr-window.c:747:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char up[32];
data/transmission-3.00/gtk/tr-window.c:748:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char down[32];
data/transmission-3.00/gtk/tr-window.c:749:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ratio[32];
data/transmission-3.00/gtk/tr-window.c:750:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/gtk/tr-window.c:799:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char text_str[256];
data/transmission-3.00/gtk/tr-window.c:800:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char speed_str[128];
data/transmission-3.00/gtk/util.c:107:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[128];
data/transmission-3.00/gtk/util.c:108:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char h[128];
data/transmission-3.00/gtk/util.c:109:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char m[128];
data/transmission-3.00/gtk/util.c:110:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[128];
data/transmission-3.00/gtk/util.c:171:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char host[1024];
data/transmission-3.00/gtk/util.c:178:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(host, pch + 3, copylen);
data/transmission-3.00/gtk/util.c:706:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char text[128];
data/transmission-3.00/gtk/util.c:707:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char markup[128];
data/transmission-3.00/gtk/util.c:721:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char size[128];
data/transmission-3.00/libtransmission/ConvertUTF.c:178:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char trailingBytesForUTF8[256] = {
data/transmission-3.00/libtransmission/announcer-common.h:42:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char log_name[128];
data/transmission-3.00/libtransmission/announcer-common.h:156:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char peer_id[PEER_ID_LEN];
data/transmission-3.00/libtransmission/announcer-common.h:162:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char log_name[128];
data/transmission-3.00/libtransmission/announcer-http.c:55:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char escaped_info_hash[SHA_DIGEST_LENGTH * 3 + 1];
data/transmission-3.00/libtransmission/announcer-http.c:122:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipv6_readable[INET6_ADDRSTRLEN];
data/transmission-3.00/libtransmission/announcer-http.c:188:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char log_name[128];
data/transmission-3.00/libtransmission/announcer-http.c:339:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->response.info_hash, request->info_hash, SHA_DIGEST_LENGTH);
data/transmission-3.00/libtransmission/announcer-http.c:359:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char log_name[128];
data/transmission-3.00/libtransmission/announcer-http.c:497:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[SHA_DIGEST_LENGTH * 3 + 1];
data/transmission-3.00/libtransmission/announcer-http.c:520:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->response.rows[i].info_hash, request->info_hash[i], SHA_DIGEST_LENGTH);
data/transmission-3.00/libtransmission/announcer-udp.c:206:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(req->response.rows[i].info_hash, in->info_hash[i], SHA_DIGEST_LENGTH);
data/transmission-3.00/libtransmission/announcer-udp.c:362:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(req->response.info_hash, in->info_hash, SHA_DIGEST_LENGTH);
data/transmission-3.00/libtransmission/announcer.c:40:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[128]; \
data/transmission-3.00/libtransmission/announcer.c:354:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lastAnnounceStr[128];
data/transmission-3.00/libtransmission/announcer.c:355:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lastScrapeStr[128];
data/transmission-3.00/libtransmission/announcer.c:836:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[128];
data/transmission-3.00/libtransmission/announcer.c:988:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(req->info_hash, tor->info.hash, SHA_DIGEST_LENGTH);
data/transmission-3.00/libtransmission/announcer.c:989:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(req->peer_id, tr_torrentGetPeerId(tor), PEER_ID_LEN);
data/transmission-3.00/libtransmission/announcer.c:1603:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(req->info_hash[req->info_hash_count++], hash, SHA_DIGEST_LENGTH);
data/transmission-3.00/libtransmission/announcer.c:1616:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(req->info_hash[req->info_hash_count++], hash, SHA_DIGEST_LENGTH);
data/transmission-3.00/libtransmission/bitfield.c:216:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bits, b->bits, b->alloc_count);
data/transmission-3.00/libtransmission/blocklist.c:227:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[64];
data/transmission-3.00/libtransmission/blocklist.c:274:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[32];
data/transmission-3.00/libtransmission/blocklist.c:359:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[2048];
data/transmission-3.00/libtransmission/cache.c:254:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/libtransmission/clients-test.c:20:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/libtransmission/clients.c:69:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[64];
data/transmission-3.00/libtransmission/clients.c:70:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, pch, span);
data/transmission-3.00/libtransmission/clients.c:845:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char out[32];
data/transmission-3.00/libtransmission/crypto-test.c:68:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf11[sizeof(test1)];
data/transmission-3.00/libtransmission/crypto-test.c:69:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf12[sizeof(test1)];
data/transmission-3.00/libtransmission/crypto-test.c:71:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf21[sizeof(test2)];
data/transmission-3.00/libtransmission/crypto-test.c:72:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf22[sizeof(test2)];
data/transmission-3.00/libtransmission/crypto-test.c:268:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAX_BUF_SIZE + 1];
data/transmission-3.00/libtransmission/crypto-utils-cyassl.c:64:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char error_message[CYASSL_MAX_ERROR_SZ];
data/transmission-3.00/libtransmission/crypto-utils-openssl.c:45:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/libtransmission/crypto-utils-polarssl.c:55:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char error_message[256];
data/transmission-3.00/libtransmission/crypto-utils.c:138:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char salt[saltval_len];
data/transmission-3.00/libtransmission/crypto-utils.c:140:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2 * SHA_DIGEST_LENGTH + saltval_len + 2];
data/transmission-3.00/libtransmission/crypto-utils.c:151:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&buf[1 + 2 * SHA_DIGEST_LENGTH], &salt, saltval_len);
data/transmission-3.00/libtransmission/crypto.c:179:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(crypto->torrentHash, hash, SHA_DIGEST_LENGTH);
data/transmission-3.00/libtransmission/fdlimit.c:552:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char err_buf[512];
data/transmission-3.00/libtransmission/file-posix.c:507:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ret = open(path, native_flags, permissions);
data/transmission-3.00/libtransmission/file-posix.c:528:25: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
tr_sys_file_t ret = mkstemp(path_template);
data/transmission-3.00/libtransmission/file-test.c:1133:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/transmission-3.00/libtransmission/file-test.c:1371:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[16];
data/transmission-3.00/libtransmission/file-win32.c:175:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(wide_path, native_unc_path_prefix, sizeof(native_unc_path_prefix));
data/transmission-3.00/libtransmission/file-win32.c:180:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(wide_path, native_local_path_prefix, sizeof(native_local_path_prefix));
data/transmission-3.00/libtransmission/file-win32.c:339:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path_template, path, path_size);
data/transmission-3.00/libtransmission/handshake.c:138:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char const* const state_strings[N_STATES] =
data/transmission-3.00/libtransmission/handshake.c:191:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, HANDSHAKE_NAME, HANDSHAKE_NAME_LEN);
data/transmission-3.00/libtransmission/handshake.c:206:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, torrentHash, SHA_DIGEST_LENGTH);
data/transmission-3.00/libtransmission/handshake.c:208:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, peer_id, PEER_ID_LEN);
data/transmission-3.00/libtransmission/handshake.c:304:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outbuf[KEY_LEN + PadA_MAXLEN];
data/transmission-3.00/libtransmission/handshake.c:311:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, public_key, len);
data/transmission-3.00/libtransmission/handshake.c:510:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, evbuffer_pullup(inbuf, key_len), key_len);
data/transmission-3.00/libtransmission/handshake.c:711:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char client[128];
data/transmission-3.00/libtransmission/handshake.c:763:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, myKey, len);
data/transmission-3.00/libtransmission/jsonsl.c:1142:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(jsn->jprs, jprs, sizeof(jsonsl_jpr_t) * njprs);
data/transmission-3.00/libtransmission/jsonsl.c:1322:38: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
size_t jsonsl_util_unescape_ex(const char *in,
data/transmission-3.00/libtransmission/jsonsl.c:1323:32: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *out,
data/transmission-3.00/libtransmission/jsonsl.c:1607:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char Escape_Equivs[0x100] = {
data/transmission-3.00/libtransmission/jsonsl.h:986:38: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
size_t jsonsl_util_unescape_ex(const char *in,
data/transmission-3.00/libtransmission/jsonsl.h:987:32: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *out,
data/transmission-3.00/libtransmission/log.c:142:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[64];
data/transmission-3.00/libtransmission/log.c:178:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timestr[64];
data/transmission-3.00/libtransmission/log.c:216:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/transmission-3.00/libtransmission/log.c:279:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timestr[64];
data/transmission-3.00/libtransmission/magnet.c:213:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(info->hash, sha1, sizeof(uint8_t) * SHA_DIGEST_LENGTH);
data/transmission-3.00/libtransmission/makemeta-test.c:141:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpl[16];
data/transmission-3.00/libtransmission/makemeta.c:205:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char wanted[32];
data/transmission-3.00/libtransmission/makemeta.c:206:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char gotten[32];
data/transmission-3.00/libtransmission/makemeta.h:74:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errfile[2048];
data/transmission-3.00/libtransmission/metainfo.c:108:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ret, str, len);
data/transmission-3.00/libtransmission/metainfo.c:340:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, prefix, prefix_len);
data/transmission-3.00/libtransmission/metainfo.c:342:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, "scrape", 6);
data/transmission-3.00/libtransmission/metainfo.c:344:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, suffix, suffix_len);
data/transmission-3.00/libtransmission/metainfo.c:569:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(inf->hash, raw, len);
data/transmission-3.00/libtransmission/metainfo.c:711:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(inf->pieces[i].hash, &raw[i * SHA_DIGEST_LENGTH], SHA_DIGEST_LENGTH);
data/transmission-3.00/libtransmission/natpmp.c:136:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[128];
data/transmission-3.00/libtransmission/net.c:108:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[INET6_ADDRSTRLEN];
data/transmission-3.00/libtransmission/net.c:164:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char err_buf[512];
data/transmission-3.00/libtransmission/net.c:181:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char err_buf[512];
data/transmission-3.00/libtransmission/net.c:206:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char err_buf[512];
data/transmission-3.00/libtransmission/net.c:253:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sockaddr, &sock4, sizeof(sock4));
data/transmission-3.00/libtransmission/net.c:264:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sockaddr, &sock6, sizeof(sock6));
data/transmission-3.00/libtransmission/net.c:282:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char err_buf[512];
data/transmission-3.00/libtransmission/net.c:432:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char err_buf[512];
data/transmission-3.00/libtransmission/net.c:674:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(addr, &((struct sockaddr_in*)&ss)->sin_addr, 4);
data/transmission-3.00/libtransmission/net.c:684:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(addr, &((struct sockaddr_in6*)&ss)->sin6_addr, 16);
data/transmission-3.00/libtransmission/net.c:696:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char ipv6[16];
data/transmission-3.00/libtransmission/net.c:734:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char const zeroes[16] = { 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0 };
data/transmission-3.00/libtransmission/peer-io.c:306:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[512];
data/transmission-3.00/libtransmission/peer-io.c:338:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[256];
data/transmission-3.00/libtransmission/peer-io.c:360:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[1024];
data/transmission-3.00/libtransmission/peer-io.c:948:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[512];
data/transmission-3.00/libtransmission/peer-io.c:1037:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(io->peerId, peer_id, 20);
data/transmission-3.00/libtransmission/peer-io.c:1155:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iovec.iov_base, bytes, iovec.iov_len);
data/transmission-3.00/libtransmission/peer-io.c:1255:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096];
data/transmission-3.00/libtransmission/peer-io.c:1292:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char err_buf[512];
data/transmission-3.00/libtransmission/peer-io.c:1366:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[512];
data/transmission-3.00/libtransmission/peer-mgr.c:2102:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/libtransmission/peer-mgr.c:2217:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pex[i].addr.addr, walk, 4);
data/transmission-3.00/libtransmission/peer-mgr.c:2219:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pex[i].port, walk, 2);
data/transmission-3.00/libtransmission/peer-mgr.c:2242:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pex[i].addr.addr.addr6.s6_addr, walk, 16);
data/transmission-3.00/libtransmission/peer-mgr.c:2244:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pex[i].port, walk, 2);
data/transmission-3.00/libtransmission/peer-msgs.c:269:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timestr[64];
data/transmission-3.00/libtransmission/peer-msgs.c:588:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(w, &ui32, sizeof(uint32_t));
data/transmission-3.00/libtransmission/peer-msgs.c:590:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, infohash, SHA_DIGEST_LENGTH); /* (2) */
data/transmission-3.00/libtransmission/peer-msgs.c:1055:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pex.addr.addr.addr4, addr, 4);
data/transmission-3.00/libtransmission/peer-msgs.c:1062:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pex.addr.addr.addr6, addr, 16);
data/transmission-3.00/libtransmission/peer-msgs.c:2443:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, &diffs.added[i].addr.addr, 4);
data/transmission-3.00/libtransmission/peer-msgs.c:2445:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, &diffs.added[i].port, 2);
data/transmission-3.00/libtransmission/peer-msgs.c:2474:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, &diffs.dropped[i].addr.addr, 4);
data/transmission-3.00/libtransmission/peer-msgs.c:2476:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, &diffs.dropped[i].port, 2);
data/transmission-3.00/libtransmission/peer-msgs.c:2492:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, &diffs6.added[i].addr.addr.addr6.s6_addr, 16);
data/transmission-3.00/libtransmission/peer-msgs.c:2494:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, &diffs6.added[i].port, 2);
data/transmission-3.00/libtransmission/peer-msgs.c:2523:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, &diffs6.dropped[i].addr.addr.addr6.s6_addr, 16);
data/transmission-3.00/libtransmission/peer-msgs.c:2525:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(walk, &diffs6.dropped[i].port, 2);
data/transmission-3.00/libtransmission/platform-quota.c:87:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(_PATH_MOUNTED, "r");
data/transmission-3.00/libtransmission/platform-quota.c:163:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(_PATH_MOUNTED, "r");
data/transmission-3.00/libtransmission/platform-quota.c:332:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open(device, O_RDONLY);
data/transmission-3.00/libtransmission/platform.c:356:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[PATH_MAX];
data/transmission-3.00/libtransmission/platform.c:552:17: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t wide_module_path[MAX_PATH];
data/transmission-3.00/libtransmission/rename-test.c:273:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const* strings[4];
data/transmission-3.00/libtransmission/rename-test.c:274:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const* expected_files[4] =
data/transmission-3.00/libtransmission/rename-test.c:281:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const* expected_contents[4] =
data/transmission-3.00/libtransmission/rename-test.c:513:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const* strings[3];
data/transmission-3.00/libtransmission/resume.c:75:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pex, buf + i * sizeof(tr_pex), sizeof(tr_pex));
data/transmission-3.00/libtransmission/rpc-server.c:360:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iovec[0].iov_base, content_ptr, content_len);
data/transmission-3.00/libtransmission/rpc-server.c:373:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/libtransmission/rpcimpl.c:1578:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/transmission-3.00/libtransmission/rpcimpl.c:1613:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/transmission-3.00/libtransmission/rpcimpl.c:1798:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/transmission-3.00/libtransmission/session-test.c:36:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[2] = { (char)peer_id[j], '\0' };
data/transmission-3.00/libtransmission/session.c:92:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, PEERID_PREFIX, 8);
data/transmission-3.00/libtransmission/session.c:303:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[8];
data/transmission-3.00/libtransmission/session.c:350:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(d, TR_KEY_peer_limit_global, atoi(TR_DEFAULT_PEER_LIMIT_GLOBAL_STR));
data/transmission-3.00/libtransmission/session.c:351:60: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(d, TR_KEY_peer_limit_per_torrent, atoi(TR_DEFAULT_PEER_LIMIT_TORRENT_STR));
data/transmission-3.00/libtransmission/session.c:352:47: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(d, TR_KEY_peer_port, atoi(TR_DEFAULT_PEER_PORT_STR));
data/transmission-3.00/libtransmission/session.c:376:46: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(d, TR_KEY_rpc_port, atoi(TR_DEFAULT_RPC_PORT_STR));
data/transmission-3.00/libtransmission/subprocess-test.c:83:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/transmission-3.00/libtransmission/subprocess-test.c:172:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/transmission-3.00/libtransmission/subprocess-test.c:229:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/transmission-3.00/libtransmission/subprocess-test.c:272:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/transmission-3.00/libtransmission/subprocess-test.c:388:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(self_path + strlen(self_path) - 4, ".cmd");
data/transmission-3.00/libtransmission/torrent-magnet.c:260:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(m->metadata + offset, data, len);
data/transmission-3.00/libtransmission/torrent.c:2245:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char time_str[32];
data/transmission-3.00/libtransmission/torrent.h:119:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errorString[128];
data/transmission-3.00/libtransmission/torrent.h:120:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errorTracker[128];
data/transmission-3.00/libtransmission/torrent.h:136:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char peer_id[PEER_ID_LEN + 1];
data/transmission-3.00/libtransmission/tr-dht.c:68:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char myid[20];
data/transmission-3.00/libtransmission/tr-dht.c:123:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pp[10];
data/transmission-3.00/libtransmission/tr-dht.c:189:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&addr.addr.addr4, &cl->nodes[i * 6], 4);
data/transmission-3.00/libtransmission/tr-dht.c:190:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&port, &cl->nodes[i * 6 + 4], 2);
data/transmission-3.00/libtransmission/tr-dht.c:202:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&addr.addr.addr6, &cl->nodes6[i * 18], 16);
data/transmission-3.00/libtransmission/tr-dht.c:203:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&port, &cl->nodes6[i * 18 + 16], 2);
data/transmission-3.00/libtransmission/tr-dht.c:244:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[201];
data/transmission-3.00/libtransmission/tr-dht.c:257:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port = atoi(p + 1);
data/transmission-3.00/libtransmission/tr-dht.c:355:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(myid, raw, len);
data/transmission-3.00/libtransmission/tr-dht.c:452:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char compact[300 * 6];
data/transmission-3.00/libtransmission/tr-dht.c:453:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char compact6[300 * 18];
data/transmission-3.00/libtransmission/tr-dht.c:463:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(compact + j, &sins[i].sin_addr, 4);
data/transmission-3.00/libtransmission/tr-dht.c:464:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(compact + j + 4, &sins[i].sin_port, 2);
data/transmission-3.00/libtransmission/tr-dht.c:469:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(compact6 + j, &sins6[i].sin6_addr, 16);
data/transmission-3.00/libtransmission/tr-dht.c:470:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(compact6 + j + 16, &sins6[i].sin6_port, 2);
data/transmission-3.00/libtransmission/tr-dht.c:599:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sin.sin_addr, &address->addr.addr4, 4);
data/transmission-3.00/libtransmission/tr-dht.c:609:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sin6.sin6_addr, &address->addr.addr6, 16);
data/transmission-3.00/libtransmission/tr-dht.c:832:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sha1[SHA_DIGEST_LENGTH];
data/transmission-3.00/libtransmission/tr-dht.c:835:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(hash_return, sha1, MIN(hash_size, SHA_DIGEST_LENGTH));
data/transmission-3.00/libtransmission/tr-lpd.c:244:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sstr[maxLength] = { 0 };
data/transmission-3.00/libtransmission/tr-lpd.c:498:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hashString[lengthof(t->info.hashString)];
data/transmission-3.00/libtransmission/tr-lpd.c:499:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char query[lpd_maxDatagramLength + 1] = { 0 };
data/transmission-3.00/libtransmission/tr-lpd.c:558:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[maxValueLen] = { 0 };
data/transmission-3.00/libtransmission/tr-lpd.c:559:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hashString[maxHashLen] = { 0 };
data/transmission-3.00/libtransmission/tr-lpd.c:720:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char foreignMsg[lpd_maxDatagramLength + 1];
data/transmission-3.00/libtransmission/tr-macros.h:149:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char __tr_static_check__ [(x) ? 1 : -1] UNUSED; \
data/transmission-3.00/libtransmission/tr-udp.c:61:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char err_buf[512];
data/transmission-3.00/libtransmission/tr-udp.c:177:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sin6.sin6_addr, ipv6, 16);
data/transmission-3.00/libtransmission/tr-udp.c:219:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ss->udp6_bound, ipv6, 16);
data/transmission-3.00/libtransmission/tr-udp.c:248:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[4096];
data/transmission-3.00/libtransmission/tr-udp.c:327:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sin.sin_addr, &public_addr->addr.addr4, sizeof(struct in_addr));
data/transmission-3.00/libtransmission/transmission.h:1360:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addr[TR_INET6_ADDRSTRLEN];
data/transmission-3.00/libtransmission/transmission.h:1361:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char client[80];
data/transmission-3.00/libtransmission/transmission.h:1362:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char flagStr[32];
data/transmission-3.00/libtransmission/transmission.h:1425:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char host[1024];
data/transmission-3.00/libtransmission/transmission.h:1428:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char announce[1024];
data/transmission-3.00/libtransmission/transmission.h:1431:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char scrape[1024];
data/transmission-3.00/libtransmission/transmission.h:1449:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lastAnnounceResult[128];
data/transmission-3.00/libtransmission/transmission.h:1468:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lastScrapeResult[128];
data/transmission-3.00/libtransmission/transmission.h:1631:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hashString[2 * SHA_DIGEST_LENGTH + 1];
data/transmission-3.00/libtransmission/transmission.h:1702:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errorString[512];
data/transmission-3.00/libtransmission/upnp.c:48:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lanaddr[16];
data/transmission-3.00/libtransmission/upnp.c:114:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char intClient[16];
data/transmission-3.00/libtransmission/upnp.c:115:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char intPort[16];
data/transmission-3.00/libtransmission/upnp.c:116:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char portStr[16];
data/transmission-3.00/libtransmission/upnp.c:141:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char portStr[16];
data/transmission-3.00/libtransmission/upnp.c:166:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char portStr[16];
data/transmission-3.00/libtransmission/upnp.c:266:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc[64];
data/transmission-3.00/libtransmission/utils-test.c:320:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const haystack[12] = "abcabcabcabc";
data/transmission-3.00/libtransmission/utils-test.c:321:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const needle[3] = "cab";
data/transmission-3.00/libtransmission/utils-test.c:332:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hex1[41];
data/transmission-3.00/libtransmission/utils-test.c:333:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hex2[41];
data/transmission-3.00/libtransmission/utils-test.c:336:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(hex1, "fb5ef5507427b17e04b69cef31fa3379b456735a", 41);
data/transmission-3.00/libtransmission/utils-test.c:425:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/transmission-3.00/libtransmission/utils.c:172:12: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
return memcpy(tr_malloc(byteCount), src, byteCount);
data/transmission-3.00/libtransmission/utils.c:341:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pch, element, elementLen);
data/transmission-3.00/libtransmission/utils.c:421:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, in, len);
data/transmission-3.00/libtransmission/utils.c:472:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#error please open a PR to implement tr_strcasestr() for your platform
data/transmission-3.00/libtransmission/utils.c:608:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, delim, delim_len);
data/transmission-3.00/libtransmission/utils.c:613:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, arr[i], part_len);
data/transmission-3.00/libtransmission/utils.c:1348:12: [2] (buffer) MultiByteToWideChar:
Requires maximum length in CHARACTERS, not bytes (CWE-120).
size = MultiByteToWideChar(CP_UTF8, 0, text, text_size, NULL, 0);
data/transmission-3.00/libtransmission/utils.c:1356:12: [2] (buffer) MultiByteToWideChar:
Requires maximum length in CHARACTERS, not bytes (CWE-120).
size = MultiByteToWideChar(CP_UTF8, 0, text, text_size, ret + extra_chars_before, size);
data/transmission-3.00/libtransmission/utils.c:1658:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/libtransmission/utils.c:2132:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[16];
data/transmission-3.00/libtransmission/utils.c:2136:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return atoi(value);
data/transmission-3.00/libtransmission/utils.c:2145:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return atoi(value);
data/transmission-3.00/libtransmission/variant-benc.c:343:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/libtransmission/variant-json.c:429:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[1024] = { '\0' };
data/transmission-3.00/libtransmission/variant-test.c:189:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/libtransmission/variant.c:66:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char old_locale[128];
data/transmission-3.00/libtransmission/variant.c:202:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(str->str.buf, bytes, len);
data/transmission-3.00/libtransmission/variant.c:209:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, bytes, len);
data/transmission-3.00/libtransmission/variant.h:53:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/transmission-3.00/libtransmission/watchdir-kqueue.c:131:27: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((backend->dirfd = open(path, O_RDONLY | O_EVTONLY)) == -1)
data/transmission-3.00/libtransmission/web.c:416:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errstr[512];
data/transmission-3.00/libtransmission/webseed.c:470:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char range[64];
data/transmission-3.00/macosx/QuickLookPlugin/main.c:96:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(theNewInstance->conduitInterface,&myInterfaceFtbl,sizeof(QLGeneratorInterfaceStruct));
data/transmission-3.00/qt/AddData.cc:36:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::ReadOnly);
data/transmission-3.00/qt/ComInteropHelper.cc:27:8: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern wchar_t qAxModuleFilename[MAX_PATH];
data/transmission-3.00/qt/FaviconCache.cc:166:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(QIODevice::WriteOnly);
data/transmission-3.00/qt/Formatter.cc:90:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/qt/Formatter.cc:107:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/qt/Formatter.cc:114:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/qt/Formatter.cc:135:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/qt/Formatter.cc:141:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/qt/MainWindow.cc:1289:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
d->open();
data/transmission-3.00/qt/MakeDialog.cc:186:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
dialog->open();
data/transmission-3.00/qt/OptionsDialog.cc:417:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
myVerifyFile.open(QIODevice::ReadOnly);
data/transmission-3.00/qt/OptionsDialog.h:78:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char myVerifyBuf[2048 * 4];
data/transmission-3.00/qt/PathButton.cc:140:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
dialog->open();
data/transmission-3.00/qt/Prefs.cc:344:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(d, TR_KEY_remote_session_port, atoi(TR_DEFAULT_RPC_PORT_STR));
data/transmission-3.00/third-party/dht/dht-example.c:72:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char hash[20] = {
data/transmission-3.00/third-party/dht/dht-example.c:98:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char buf[4096];
data/transmission-3.00/third-party/dht/dht-example.c:123:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char myid[20];
data/transmission-3.00/third-party/dht/dht-example.c:149:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/transmission-3.00/third-party/dht/dht-example.c:153:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sin.sin_addr, buf, 4);
data/transmission-3.00/third-party/dht/dht-example.c:158:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sin6.sin6_addr, buf, 16);
data/transmission-3.00/third-party/dht/dht-example.c:175:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(id_file, O_RDONLY);
data/transmission-3.00/third-party/dht/dht-example.c:183:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open("/dev/urandom", O_RDONLY);
data/transmission-3.00/third-party/dht/dht-example.c:200:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ofd = open(id_file, O_WRONLY | O_CREAT | O_TRUNC, 0666);
data/transmission-3.00/third-party/dht/dht-example.c:225:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port = atoi(argv[i++]);
data/transmission-3.00/third-party/dht/dht-example.c:251:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&bootstrap_nodes[num_bootstrap_nodes],
data/transmission-3.00/third-party/dht/dht-example.c:482:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(hash_return, ctx.digest, hash_size > 16 ? 16 : hash_size);
data/transmission-3.00/third-party/dht/dht-example.c:493:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[9]; /* crypt is limited to 8 characters */
data/transmission-3.00/third-party/dht/dht-example.c:514:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open("/dev/urandom", O_RDONLY);
data/transmission-3.00/third-party/dht/dht.c:127:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char id[20];
data/transmission-3.00/third-party/dht/dht.c:139:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char first[20];
data/transmission-3.00/third-party/dht/dht.c:150:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char id[20];
data/transmission-3.00/third-party/dht/dht.c:156:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char token[40];
data/transmission-3.00/third-party/dht/dht.c:171:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char id[20];
data/transmission-3.00/third-party/dht/dht.c:181:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char ip[16];
data/transmission-3.00/third-party/dht/dht.c:217:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char id[20];
data/transmission-3.00/third-party/dht/dht.c:284:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char zeroes[20] = {0};
data/transmission-3.00/third-party/dht/dht.c:285:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char v4prefix[16] = {
data/transmission-3.00/third-party/dht/dht.c:296:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char myid[20];
data/transmission-3.00/third-party/dht/dht.c:298:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char my_v[9];
data/transmission-3.00/third-party/dht/dht.c:299:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char secret[8];
data/transmission-3.00/third-party/dht/dht.c:300:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char oldsecret[8];
data/transmission-3.00/third-party/dht/dht.c:556:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(id_return, b->first, 20);
data/transmission-3.00/third-party/dht/dht.c:571:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(id_return, b->first, 20);
data/transmission-3.00/third-party/dht/dht.c:575:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(id_return, b->first, bit / 8);
data/transmission-3.00/third-party/dht/dht.c:602:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tid_return + 2, &seqno, 2);
data/transmission-3.00/third-party/dht/dht.c:611:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(seqno_return, tid + 2, 2);
data/transmission-3.00/third-party/dht/dht.c:621:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tid[4];
data/transmission-3.00/third-party/dht/dht.c:674:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&blacklist[next_blacklisted], sa, salen);
data/transmission-3.00/third-party/dht/dht.c:743:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char new_id[20];
data/transmission-3.00/third-party/dht/dht.c:761:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new->first, new_id, 20);
data/transmission-3.00/third-party/dht/dht.c:859:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((struct sockaddr*)&n->ss, sa, salen);
data/transmission-3.00/third-party/dht/dht.c:888:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(n->id, id, 20);
data/transmission-3.00/third-party/dht/dht.c:889:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((struct sockaddr*)&n->ss, sa, salen);
data/transmission-3.00/third-party/dht/dht.c:913:30: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tid[4];
data/transmission-3.00/third-party/dht/dht.c:936:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&b->cached, sa, salen);
data/transmission-3.00/third-party/dht/dht.c:949:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(n->id, id, 20);
data/transmission-3.00/third-party/dht/dht.c:950:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&n->ss, sa, salen);
data/transmission-3.00/third-party/dht/dht.c:1058:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(n->id, id, 20);
data/transmission-3.00/third-party/dht/dht.c:1061:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&n->ss, sa, salen);
data/transmission-3.00/third-party/dht/dht.c:1074:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(n->token, token, token_len);
data/transmission-3.00/third-party/dht/dht.c:1124:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tid[4];
data/transmission-3.00/third-party/dht/dht.c:1197:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tid[4];
data/transmission-3.00/third-party/dht/dht.c:1320:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[18];
data/transmission-3.00/third-party/dht/dht.c:1328:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, st->peers[i].ip, 4);
data/transmission-3.00/third-party/dht/dht.c:1329:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 4, &swapped, 2);
data/transmission-3.00/third-party/dht/dht.c:1333:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, st->peers[i].ip, 16);
data/transmission-3.00/third-party/dht/dht.c:1334:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 16, &swapped, 2);
data/transmission-3.00/third-party/dht/dht.c:1379:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sr->id, id, 20);
data/transmission-3.00/third-party/dht/dht.c:1450:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(st->id, id, 20);
data/transmission-3.00/third-party/dht/dht.c:1485:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p->ip, ip, len);
data/transmission-3.00/third-party/dht/dht.c:1538:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(oldsecret, secret, sizeof(secret));
data/transmission-3.00/third-party/dht/dht.c:1580:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char t[TOKEN_SIZE];
data/transmission-3.00/third-party/dht/dht.c:1637:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/third-party/dht/dht.c:1727:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/transmission-3.00/third-party/dht/dht.c:1735:17: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(buf, "???");
data/transmission-3.00/third-party/dht/dht.c:1780:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(myid, id, 20);
data/transmission-3.00/third-party/dht/dht.c:1782:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(my_v, "1:v4:", 5);
data/transmission-3.00/third-party/dht/dht.c:1783:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(my_v + 5, v, 4);
data/transmission-3.00/third-party/dht/dht.c:1894:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char id[20];
data/transmission-3.00/third-party/dht/dht.c:1902:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(id, myid, 20);
data/transmission-3.00/third-party/dht/dht.c:1920:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tid[4];
data/transmission-3.00/third-party/dht/dht.c:1949:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char id[20];
data/transmission-3.00/third-party/dht/dht.c:1955:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(id, b->first, 20);
data/transmission-3.00/third-party/dht/dht.c:1973:30: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tid[4];
data/transmission-3.00/third-party/dht/dht.c:2021:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tid[16], id[20], info_hash[20], target[20];
data/transmission-3.00/third-party/dht/dht.c:2022:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char nodes[26*16], nodes6[38*16], token[128];
data/transmission-3.00/third-party/dht/dht.c:2027:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char values[2048], values6[2048];
data/transmission-3.00/third-party/dht/dht.c:2113:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sin.sin_addr, ni + 20, 4);
data/transmission-3.00/third-party/dht/dht.c:2114:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sin.sin_port, ni + 24, 2);
data/transmission-3.00/third-party/dht/dht.c:2130:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sin6.sin6_addr, ni + 20, 16);
data/transmission-3.00/third-party/dht/dht.c:2131:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sin6.sin6_port, ni + 36, 2);
data/transmission-3.00/third-party/dht/dht.c:2214:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char token[TOKEN_SIZE];
data/transmission-3.00/third-party/dht/dht.c:2445:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tid[4];
data/transmission-3.00/third-party/dht/dht.c:2464:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + offset, src, delta); \
data/transmission-3.00/third-party/dht/dht.c:2506:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/third-party/dht/dht.c:2526:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/third-party/dht/dht.c:2546:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/third-party/dht/dht.c:2578:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/transmission-3.00/third-party/dht/dht.c:2669:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nodes + size * i, n->id, 20);
data/transmission-3.00/third-party/dht/dht.c:2670:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nodes + size * i + 20, &sin->sin_addr, 4);
data/transmission-3.00/third-party/dht/dht.c:2671:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nodes + size * i + 24, &sin->sin_port, 2);
data/transmission-3.00/third-party/dht/dht.c:2674:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nodes + size * i, n->id, 20);
data/transmission-3.00/third-party/dht/dht.c:2675:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nodes + size * i + 20, &sin6->sin6_addr, 16);
data/transmission-3.00/third-party/dht/dht.c:2676:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nodes + size * i + 36, &sin6->sin6_port, 2);
data/transmission-3.00/third-party/dht/dht.c:2704:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char nodes[8 * 26];
data/transmission-3.00/third-party/dht/dht.c:2705:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char nodes6[8 * 38];
data/transmission-3.00/third-party/dht/dht.c:2749:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/third-party/dht/dht.c:2780:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/third-party/dht/dht.c:2808:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/third-party/dht/dht.c:2830:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/third-party/dht/dht.c:2917:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tid_return, q + 1, l);
data/transmission-3.00/third-party/dht/dht.c:2927:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(id_return, p + 7, 20);
data/transmission-3.00/third-party/dht/dht.c:2936:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(info_hash_return, p + 14, 20);
data/transmission-3.00/third-party/dht/dht.c:2971:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(target_return, p + 11, 20);
data/transmission-3.00/third-party/dht/dht.c:2984:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(token_return, q + 1, l);
data/transmission-3.00/third-party/dht/dht.c:3000:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nodes_return, q + 1, l);
data/transmission-3.00/third-party/dht/dht.c:3016:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nodes6_return, q + 1, l);
data/transmission-3.00/third-party/dht/dht.c:3039:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char*)values_return + j, q + 1, l);
data/transmission-3.00/third-party/dht/dht.c:3044:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char*)values6_return + j6, q + 1, l);
data/transmission-3.00/third-party/libnatpmp/getgateway.c:147:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/transmission-3.00/third-party/libnatpmp/getgateway.c:151:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen("/proc/net/route", "r");
data/transmission-3.00/third-party/libnatpmp/getgateway.c:246:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char m_space[512];
data/transmission-3.00/third-party/libnatpmp/getgateway.c:328:2: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR keyName[MAX_KEY_LENGTH];
data/transmission-3.00/third-party/libnatpmp/getgateway.c:330:2: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR keyValue[MAX_VALUE_LENGTH];
data/transmission-3.00/third-party/libnatpmp/getgateway.c:333:2: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR gatewayValue[MAX_VALUE_LENGTH];
data/transmission-3.00/third-party/libnatpmp/getgateway.c:484:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[32];
data/transmission-3.00/third-party/libnatpmp/natpmp.c:201:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[16];
data/transmission-3.00/third-party/libnatpmp/natpmp.h:58:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char pending_request[12];
data/transmission-3.00/third-party/libutp/utp.cpp:91:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addrbuf[65];
data/transmission-3.00/third-party/libutp/utp.cpp:92:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addrbuf2[65];
data/transmission-3.00/third-party/libutp/utp.cpp:1836:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(conn->extensions, data, 8);
data/transmission-3.00/third-party/libutp/utp.cpp:2256:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(mem + sizeof(uint), data, packet_end - data);
data/transmission-3.00/third-party/libutp/utp.cpp:2813:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(addr, &sa, *addrlen);
data/transmission-3.00/third-party/miniupnpc/connecthostport.c:71:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp_host[MAXHOSTNAMELEN+1];
data/transmission-3.00/third-party/miniupnpc/connecthostport.c:72:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char port_str[8];
data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.c:20:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(datas->cureltname, name, l);
data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.c:45:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&datas->CIF, &datas->tmp, sizeof(struct IGDdatas_service));
data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.c:48:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&datas->IPv6FC, &datas->tmp, sizeof(struct IGDdatas_service));
data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.c:54:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&datas->first, &datas->tmp, sizeof(struct IGDdatas_service));
data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.c:56:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&datas->second, &datas->tmp, sizeof(struct IGDdatas_service));
data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.c:88:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstmember, data, l);
data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.h:16:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char controlurl[MINIUPNPC_URL_MAXSIZE];
data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.h:17:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char eventsuburl[MINIUPNPC_URL_MAXSIZE];
data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.h:18:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char scpdurl[MINIUPNPC_URL_MAXSIZE];
data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.h:19:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char servicetype[MINIUPNPC_URL_MAXSIZE];
data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.h:24:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cureltname[MINIUPNPC_URL_MAXSIZE];
data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.h:25:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char urlbase[MINIUPNPC_URL_MAXSIZE];
data/transmission-3.00/third-party/miniupnpc/igd_desc_parse.h:26:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char presentationurl[MINIUPNPC_URL_MAXSIZE];
data/transmission-3.00/third-party/miniupnpc/minisoap.c:50:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, headers, headerssize);
data/transmission-3.00/third-party/miniupnpc/minisoap.c:51:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+headerssize, body, bodysize);
data/transmission-3.00/third-party/miniupnpc/minisoap.c:82:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char headerbuf[512];
data/transmission-3.00/third-party/miniupnpc/minisoap.c:84:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char portstr[8];
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:48:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sun_path[UNIX_PATH_LEN];
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:151:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, buffer + bufferindex, lcopy); \
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:228:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buffer[256];
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:252:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, devtype, stsize);
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:268:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buffer[256];
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:349:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp->buffer, url, urlsize);
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:351:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp->st, st, stsize);
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:490:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bufr[1536]; /* reception and emission buffer */
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:786:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hbuf[NI_MAXHOST], sbuf[NI_MAXSERV];
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:862:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp->buffer, descURL, urlsize);
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:864:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp->st, st, stsize);
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:867:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp->usn, usn, usnsize);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:87:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int i = atoi(addr + 4);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:121:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[MAXHOSTNAMELEN+1];
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:124:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char soapact[128];
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:125:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char soapbody[2048];
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:419:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifname[IF_NAMESIZE];
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:421:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char scope_str[8];
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:454:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s, base, n);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:464:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "%25", 3);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:465:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p + 3, ifname, strlen(ifname));
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:469:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "%25", 3);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:470:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p + 3, scope_str, strlen(scope_str));
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:478:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s + n, url, l - n);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:529:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char status[64];
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:572:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char extIpAddr[16];
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:573:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char myLanAddr[40];
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:659:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&data->tmp, &data->first, sizeof(struct IGDdatas_service));
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:660:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&data->first, &data->second, sizeof(struct IGDdatas_service));
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:661:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&data->second, &data->tmp, sizeof(struct IGDdatas_service));
data/transmission-3.00/third-party/miniupnpc/miniwget.c:70:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/transmission-3.00/third-party/miniupnpc/miniwget.c:84:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char chunksize_buf[32];
data/transmission-3.00/third-party/miniupnpc/miniwget.c:134:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(header_buf + header_buf_used, buf, n);
data/transmission-3.00/third-party/miniupnpc/miniwget.c:183:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*status_code = atoi(header_buf + sp + 1);
data/transmission-3.00/third-party/miniupnpc/miniwget.c:207:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
content_length = atoi(header_buf+valuestart);
data/transmission-3.00/third-party/miniupnpc/miniwget.c:230:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, header_buf + endofheaders, n);
data/transmission-3.00/third-party/miniupnpc/miniwget.c:307:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(content_buf + content_buf_used, buf + i, bytestocopy);
data/transmission-3.00/third-party/miniupnpc/miniwget.c:340:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(content_buf + content_buf_used, buf, n);
data/transmission-3.00/third-party/miniupnpc/miniwget.c:374:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/transmission-3.00/third-party/miniupnpc/miniwget.c:545:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[IF_NAMESIZE];
data/transmission-3.00/third-party/miniupnpc/miniwget.c:554:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, scope, l);
data/transmission-3.00/third-party/miniupnpc/miniwget.c:562:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[8];
data/transmission-3.00/third-party/miniupnpc/miniwget.c:571:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, scope, l);
data/transmission-3.00/third-party/miniupnpc/miniwget.c:632:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[MAXHOSTNAMELEN+1];
data/transmission-3.00/third-party/miniupnpc/miniwget.c:651:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[MAXHOSTNAMELEN+1];
data/transmission-3.00/third-party/miniupnpc/portlistingparse.c:106:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pm->remoteHost, data, l);
data/transmission-3.00/third-party/miniupnpc/portlistingparse.c:115:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pm->protocol, data, l);
data/transmission-3.00/third-party/miniupnpc/portlistingparse.c:122:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pm->internalClient, data, l);
data/transmission-3.00/third-party/miniupnpc/portlistingparse.c:129:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pm->description, data, l);
data/transmission-3.00/third-party/miniupnpc/portlistingparse.h:42:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char remoteHost[64];
data/transmission-3.00/third-party/miniupnpc/portlistingparse.h:43:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char internalClient[64];
data/transmission-3.00/third-party/miniupnpc/portlistingparse.h:44:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char description[64];
data/transmission-3.00/third-party/miniupnpc/portlistingparse.h:45:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char protocol[4];
data/transmission-3.00/third-party/miniupnpc/upnpdev.h:23:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[3];
data/transmission-3.00/third-party/miniupnpc/upnpreplyparse.c:22:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->curelt, name, l);
data/transmission-3.00/third-party/miniupnpc/upnpreplyparse.c:58:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nv->value, data->cdata, l);
data/transmission-3.00/third-party/miniupnpc/upnpreplyparse.c:90:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->portListing, datas, l);
data/transmission-3.00/third-party/miniupnpc/upnpreplyparse.h:17:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[64];
data/transmission-3.00/third-party/miniupnpc/upnpreplyparse.h:18:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[128];
data/transmission-3.00/third-party/miniupnpc/upnpreplyparse.h:23:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char curelt[64];
data/transmission-3.00/utils/edit.c:29:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char const* replace[2] = { NULL, NULL };
data/transmission-3.00/utils/remote.c:35:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
#define DEFAULT_PORT atoi(TR_DEFAULT_RPC_PORT_STR)
data/transmission-3.00/utils/remote.c:97:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[128];
data/transmission-3.00/utils/remote.c:98:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[128];
data/transmission-3.00/utils/remote.c:99:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char h[128];
data/transmission-3.00/utils/remote.c:100:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char m[128];
data/transmission-3.00/utils/remote.c:101:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[128];
data/transmission-3.00/utils/remote.c:102:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char t[128];
data/transmission-3.00/utils/remote.c:595:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const hh[3] = { arg[0], arg[1], '\0' };
data/transmission-3.00/utils/remote.c:596:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const mm[3] = { arg[2], arg[3], '\0' };
data/transmission-3.00/utils/remote.c:597:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int const hour = atoi(hh);
data/transmission-3.00/utils/remote.c:598:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int const min = atoi(mm);
data/transmission-3.00/utils/remote.c:939:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/utils/remote.c:940:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[512];
data/transmission-3.00/utils/remote.c:1289:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sizestr[64];
data/transmission-3.00/utils/remote.c:1449:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char haveStr[32];
data/transmission-3.00/utils/remote.c:1477:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char etaStr[16];
data/transmission-3.00/utils/remote.c:1478:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char statusStr[64];
data/transmission-3.00/utils/remote.c:1479:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ratioStr[32];
data/transmission-3.00/utils/remote.c:1480:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char doneStr[8];
data/transmission-3.00/utils/remote.c:1530:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/utils/remote.c:1714:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/transmission-3.00/utils/remote.c:1822:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/utils/remote.c:1823:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[128];
data/transmission-3.00/utils/remote.c:1824:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf3[128];
data/transmission-3.00/utils/remote.c:1942:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/transmission-3.00/utils/remote.c:1974:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char id[4096];
data/transmission-3.00/utils/remote.c:2515:66: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(args, TR_KEY_cache_size_mb, atoi(optarg));
data/transmission-3.00/utils/remote.c:2679:68: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(targs, TR_KEY_peer_limit, atoi(optarg));
data/transmission-3.00/utils/remote.c:2683:75: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantDictAddInt(sargs, TR_KEY_peer_limit_global, atoi(optarg));
data/transmission-3.00/utils/remote.c:2704:92: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tr_variantListAddInt(tr_variantDictAddList(args, TR_KEY_trackerRemove, 1), atoi(optarg));
data/transmission-3.00/utils/remote.c:3026:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*port = atoi(last_colon + 1);
data/transmission-3.00/utils/show.c:116:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buffer[32];
data/transmission-3.00/utils/show.c:131:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/transmission-3.00/utils/show.c:239:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char escaped[SHA_DIGEST_LENGTH * 3 + 1];
data/transmission-3.00/daemon/daemon-posix.c:79:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (read(signal_pipe[0], &sig, sizeof(sig)) == sizeof(sig) && sig != 0)
data/transmission-3.00/gtk/tr-window.c:594:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gtk_css_provider_load_from_data(css_provider, style, strlen(style), NULL);
data/transmission-3.00/gtk/transmission-resources.c:3116:31: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
__pragma(section(".CRT$XCU",read)) \
data/transmission-3.00/gtk/transmission-resources.c:3124:31: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
__pragma(section(".CRT$XCU",read)) \
data/transmission-3.00/gtk/transmission-resources.c:3136:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
section(".CRT$XCU",read)
data/transmission-3.00/gtk/transmission-resources.c:3143:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
section(".CRT$XCU",read)
data/transmission-3.00/gtk/util.c:219:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (str == NULL || strlen(str) != 40)
data/transmission-3.00/libtransmission/ConvertUTF.c:367:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sourceEnd = source + (max_len == TR_BAD_SIZE ? strlen (str) : max_len);
data/transmission-3.00/libtransmission/announcer.c:1530:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (tr_urlParse(url, strlen(url), &scheme, &host, &port, NULL))
data/transmission-3.00/libtransmission/blocklist-test.c:46:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tr_sys_file_write(fd, contents, strlen(contents), NULL, NULL);
data/transmission-3.00/libtransmission/crypto-test.c:240:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check_uint(len, ==, strlen(out));
data/transmission-3.00/libtransmission/crypto-test.c:276:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check_uint(len, ==, strlen(out));
data/transmission-3.00/libtransmission/crypto-test.c:291:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check_uint(len, ==, strlen(out));
data/transmission-3.00/libtransmission/crypto-utils.c:149:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tr_sha1(sha, plain_text, (int)strlen(plain_text), salt, saltval_len, NULL);
data/transmission-3.00/libtransmission/crypto-utils.c:166:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const source_len = strlen(ssha1);
data/transmission-3.00/libtransmission/crypto-utils.c:180:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tr_sha1(buf, plain_text, (int)strlen(plain_text), salt, (int)salt_len, NULL);
data/transmission-3.00/libtransmission/crypto-utils.c:241:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return tr_base64_encode(input, input == NULL ? 0 : strlen(input), output_length);
data/transmission-3.00/libtransmission/crypto-utils.c:289:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return tr_base64_decode(input, input == NULL ? 0 : strlen(input), output_length);
data/transmission-3.00/libtransmission/file-posix.c:173:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* path_end = p + strlen(p);
data/transmission-3.00/libtransmission/file-posix.c:221:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (pp = pp == NULL ? p + strlen(p) : pp; pp < path_end; pp += strlen(pp))
data/transmission-3.00/libtransmission/file-posix.c:221:69: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (pp = pp == NULL ? p + strlen(p) : pp; pp < path_end; pp += strlen(pp))
data/transmission-3.00/libtransmission/file-posix.c:617:21: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
my_bytes_read = read(handle, buffer, size);
data/transmission-3.00/libtransmission/file-posix.c:657:25: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
my_bytes_read = read(handle, buffer, size);
data/transmission-3.00/libtransmission/file-test.c:122:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slashPos = p + strlen(p) - 1;
data/transmission-3.00/libtransmission/file-win32.c:304:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t path_size = strlen(path);
data/transmission-3.00/libtransmission/file-win32.c:608:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char const* end = path + strlen(path);
data/transmission-3.00/libtransmission/file-win32.c:655:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char const* end = path + strlen(path);
data/transmission-3.00/libtransmission/file.c:86:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bool ret = tr_sys_file_write(handle, buffer, strlen(buffer), NULL, error);
data/transmission-3.00/libtransmission/file.c:111:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = tr_sys_file_write(handle, buffer, strlen(buffer), NULL, error);
data/transmission-3.00/libtransmission/json-test.c:41:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
err = tr_variantFromJson(&top, in, strlen(in));
data/transmission-3.00/libtransmission/json-test.c:81:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
err = tr_variantFromJson(&top, in, strlen(in));
data/transmission-3.00/libtransmission/json-test.c:93:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
err = tr_variantFromJson(&top, in, strlen(in));
data/transmission-3.00/libtransmission/json-test.c:113:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
err = tr_variantFromJson(&top, in, strlen(in));
data/transmission-3.00/libtransmission/json-test.c:128:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
err = tr_variantFromJson(&top, json, strlen(json));
data/transmission-3.00/libtransmission/json-test.c:166:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int const err = tr_variantFromJson(&top, in, strlen(in));
data/transmission-3.00/libtransmission/json-test.c:200:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
err = tr_variantFromJson(&top, in, strlen(in));
data/transmission-3.00/libtransmission/json-test.c:219:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int const err = tr_variantFromJson(&top, in, strlen(in));
data/transmission-3.00/libtransmission/json-test.c:234:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int const err = tr_variantFromJson(&top, in, strlen(in));
data/transmission-3.00/libtransmission/jsonsl.c:802:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
input_len = strlen(in);
data/transmission-3.00/libtransmission/jsonsl.c:865:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
component->len = strlen(component->pstr);
data/transmission-3.00/libtransmission/jsonsl.c:914:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
my_copy = (char *)malloc(strlen(path) + 1);
data/transmission-3.00/libtransmission/jsonsl.c:944:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
origlen = strlen(path) + 1;
data/transmission-3.00/libtransmission/libtransmission-test.c:549:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
libtest_create_file_with_contents(path, str, strlen(str));
data/transmission-3.00/libtransmission/magnet.c:144:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
keylen = strlen(key);
data/transmission-3.00/libtransmission/magnet.c:157:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vallen = strlen(val);
data/transmission-3.00/libtransmission/makemeta-test.c:105:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
payloadSize = strlen(payload);
data/transmission-3.00/libtransmission/makemeta.c:361:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
offset = strlen(topFile);
data/transmission-3.00/libtransmission/makemeta.c:371:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(file->filename) > offset)
data/transmission-3.00/libtransmission/metainfo-test.c:90:68: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int const err = tr_ctorSetMetainfo(ctor, metainfo[i].benc, strlen(metainfo[i].benc));
data/transmission-3.00/libtransmission/metainfo.c:42:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const name_len = strlen(name);
data/transmission-3.00/libtransmission/metainfo.c:122:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const reserved_name_len = strlen(reserved_names[i]);
data/transmission-3.00/libtransmission/metainfo.c:178:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
root_len = strlen(root);
data/transmission-3.00/libtransmission/metainfo.c:202:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
evbuffer_add(buf, final_str, strlen(final_str));
data/transmission-3.00/libtransmission/metainfo.c:222:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*is_adjusted = buf_len != strlen(*setme) || strncmp(buf_data, *setme, buf_len) != 0;
data/transmission-3.00/libtransmission/metainfo.c:236:76: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* const root_name = tr_metainfo_sanitize_path_component(inf->name, strlen(inf->name), &is_root_adjusted);
data/transmission-3.00/libtransmission/metainfo.c:334:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const suffix_len = strlen(suffix);
data/transmission-3.00/libtransmission/metainfo.c:472:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(url);
data/transmission-3.00/libtransmission/net.c:204:76: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (setsockopt(s, IPPROTO_TCP, TCP_CONGESTION, (void const*)algorithm, strlen(algorithm) + 1) == -1)
data/transmission-3.00/libtransmission/platform.c:416:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* value = line + strlen(key);
data/transmission-3.00/libtransmission/quark-test.c:24:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check_uint(len, ==, strlen(str));
data/transmission-3.00/libtransmission/quark.c:499:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(str);
data/transmission-3.00/libtransmission/rename-test.c:45:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const str_len = strlen(str);
data/transmission-3.00/libtransmission/rpc-server.c:128:82: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char const* boundary_val = boundary_key_begin != NULL ? boundary_key_begin + strlen(boundary_key) : "arglebargle";
data/transmission-3.00/libtransmission/rpc-server.c:130:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const boundary_len = strlen(boundary);
data/transmission-3.00/libtransmission/rpc-server.c:190:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const ourlen = strlen(ours);
data/transmission-3.00/libtransmission/rpc-server.c:450:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
subpath = tr_strdup(req->uri + strlen(server->url) + 4);
data/transmission-3.00/libtransmission/rpc-server.c:688:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(req->uri, server->url, strlen(server->url)) != 0)
data/transmission-3.00/libtransmission/rpc-server.c:695:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strncmp(req->uri + strlen(server->url), "web/", 4) == 0)
data/transmission-3.00/libtransmission/rpc-server.c:699:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strcmp(req->uri + strlen(server->url), "upload") == 0)
data/transmission-3.00/libtransmission/rpc-server.c:744:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strncmp(req->uri + strlen(server->url), "rpc", 3) == 0)
data/transmission-3.00/libtransmission/rpcimpl.c:2807:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
next != NULL ? (size_t)(next - (delim + 1)) : strlen(delim + 1));
data/transmission-3.00/libtransmission/session-test.c:31:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check_uint(strlen((char*)peer_id), ==, PEER_ID_LEN);
data/transmission-3.00/libtransmission/session-test.c:64:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check_uint(strlen(session_id_str_1), ==, 48);
data/transmission-3.00/libtransmission/session-test.c:75:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check_uint(strlen(session_id_str_2), ==, 48);
data/transmission-3.00/libtransmission/session-test.c:84:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check_uint(strlen(session_id_str_2), ==, 48);
data/transmission-3.00/libtransmission/session-test.c:98:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check_uint(strlen(session_id_str_3), ==, 48);
data/transmission-3.00/libtransmission/session.c:463:46: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
tr_variantDictAddInt(d, TR_KEY_umask, s->umask);
data/transmission-3.00/libtransmission/session.c:817:9: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(session->umask);
data/transmission-3.00/libtransmission/session.c:817:24: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(session->umask);
data/transmission-3.00/libtransmission/session.c:2393:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const slen = strlen(str);
data/transmission-3.00/libtransmission/session.c:2394:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const elen = strlen(end);
data/transmission-3.00/libtransmission/session.h:126:9: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
int umask;
data/transmission-3.00/libtransmission/subprocess-posix.c:95:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
count = read(pipe_fd, &child_errno, sizeof(child_errno));
data/transmission-3.00/libtransmission/subprocess-test.c:388:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy(self_path + strlen(self_path) - 4, ".cmd");
data/transmission-3.00/libtransmission/subprocess-win32.c:84:21: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*full_len = wcslen(part) + 1;
data/transmission-3.00/libtransmission/subprocess-win32.c:248:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t arguments_len = *arguments != NULL ? strlen(*arguments) : 0u;
data/transmission-3.00/libtransmission/subprocess-win32.c:249:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const argument_len = strlen(argument);
data/transmission-3.00/libtransmission/torrent.c:3805:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
oldpath_len = strlen(oldpath);
data/transmission-3.00/libtransmission/torrent.c:3810:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const len = strlen(name);
data/transmission-3.00/libtransmission/torrent.c:3894:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const oldpath_len = strlen(oldpath);
data/transmission-3.00/libtransmission/torrent.c:3898:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (oldpath_len >= strlen(file->name))
data/transmission-3.00/libtransmission/torrent.c:3916:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (oldpath_len >= strlen(file->name))
data/transmission-3.00/libtransmission/tr-dht.c:253:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = memchr(buf, ' ', strlen(buf));
data/transmission-3.00/libtransmission/tr-getopt.c:44:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(description);
data/transmission-3.00/libtransmission/tr-getopt.c:102:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*longWidth = MAX(*longWidth, (int)strlen(o->longName));
data/transmission-3.00/libtransmission/tr-getopt.c:107:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*shortWidth = MAX(*shortWidth, (int)strlen(o->shortName));
data/transmission-3.00/libtransmission/tr-getopt.c:112:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*argWidth = MAX(*argWidth, (int)strlen(arg));
data/transmission-3.00/libtransmission/tr-getopt.c:159:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = o->longName != NULL ? strlen(o->longName) : 0;
data/transmission-3.00/libtransmission/tr-getopt.c:169:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = o->shortName != NULL ? strlen(o->shortName) : 0;
data/transmission-3.00/libtransmission/tr-lpd.c:178:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(s);
data/transmission-3.00/libtransmission/tr-lpd.c:202:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (end == NULL || strlen(end) > strlen(two_blank))
data/transmission-3.00/libtransmission/tr-lpd.c:202:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (end == NULL || strlen(end) > strlen(two_blank))
data/transmission-3.00/libtransmission/tr-lpd.c:247:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) > maxLength - strlen(CRLF ": "))
data/transmission-3.00/libtransmission/tr-lpd.c:247:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) > maxLength - strlen(CRLF ": "))
data/transmission-3.00/libtransmission/tr-lpd.c:263:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char const* const beg = pos + strlen(sstr);
data/transmission-3.00/libtransmission/tr-lpd.c:276:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(val, beg, n);
data/transmission-3.00/libtransmission/tr-lpd.c:517:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int const len = strlen(query);
data/transmission-3.00/libtransmission/trevent.c:143:27: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#define piperead(a, b, c) read(a, b, c)
data/transmission-3.00/libtransmission/utils-test.c:149:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check(strlen(out) == 17 || strlen(out) == 33);
data/transmission-3.00/libtransmission/utils-test.c:149:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check(strlen(out) == 17 || strlen(out) == 33);
data/transmission-3.00/libtransmission/utils-test.c:164:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check(strlen(out) == 1 || strlen(out) == 2);
data/transmission-3.00/libtransmission/utils-test.c:164:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check(strlen(out) == 1 || strlen(out) == 2);
data/transmission-3.00/libtransmission/utils-test.c:171:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check(strlen(out) == 4 || strlen(out) == 7);
data/transmission-3.00/libtransmission/utils-test.c:171:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check(strlen(out) == 4 || strlen(out) == 7);
data/transmission-3.00/libtransmission/utils-test.c:416:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
str = tr_http_unescape(url, strlen(url));
data/transmission-3.00/libtransmission/utils.c:185:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const len = str != NULL ? strlen(str) : 0;
data/transmission-3.00/libtransmission/utils.c:322:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bufLen += strlen(element) + 1;
data/transmission-3.00/libtransmission/utils.c:340:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const elementLen = strlen(element);
data/transmission-3.00/libtransmission/utils.c:404:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return tr_strndup(in, in != NULL ? strlen(in) : 0);
data/transmission-3.00/libtransmission/utils.c:593:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t delim_len = strlen(delim);
data/transmission-3.00/libtransmission/utils.c:596:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
total_len += strlen(arr[i]);
data/transmission-3.00/libtransmission/utils.c:612:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const part_len = strlen(arr[i]);
data/transmission-3.00/libtransmission/utils.c:625:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(str);
data/transmission-3.00/libtransmission/utils.c:662:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
str_len = strlen(str);
data/transmission-3.00/libtransmission/utils.c:663:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
suffix_len = strlen(suffix);
data/transmission-3.00/libtransmission/utils.c:860:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const url_len = strlen(url);
data/transmission-3.00/libtransmission/utils.c:875:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
url_len = strlen(url);
data/transmission-3.00/libtransmission/utils.c:926:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (scheme_len == strlen(s->name) && memcmp(scheme, s->name, scheme_len) == 0)
data/transmission-3.00/libtransmission/utils.c:939:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
url_len = strlen(url);
data/transmission-3.00/libtransmission/utils.c:1268:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
max_len = strlen(str);
data/transmission-3.00/libtransmission/utils.c:1299:21: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_size = wcslen(text);
data/transmission-3.00/libtransmission/utils.c:1345:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_size = strlen(text);
data/transmission-3.00/libtransmission/utils.c:1403:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text_size = strlen(text);
data/transmission-3.00/libtransmission/utils.c:1572:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
success = parseNumberSection(walk, strlen(walk), &range);
data/transmission-3.00/libtransmission/utils.c:1573:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
walk += strlen(walk);
data/transmission-3.00/libtransmission/variant-test.c:156:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const len = strlen(str);
data/transmission-3.00/libtransmission/variant-test.c:207:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check_ptr(end, ==, buf + strlen((char*)buf));
data/transmission-3.00/libtransmission/variant-test.c:288:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
check_ptr(end, ==, buf + strlen((char const*)buf));
data/transmission-3.00/libtransmission/variant-test.c:310:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
err = tr_variantFromBencFull(&val, buf, strlen(buf), NULL, &end);
data/transmission-3.00/libtransmission/variant-test.c:316:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
err = tr_variantFromBencFull(&val, buf, strlen(buf), NULL, &end);
data/transmission-3.00/libtransmission/variant-test.c:343:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tr_variantFromBenc(&top, benc_str, strlen(benc_str));
data/transmission-3.00/libtransmission/variant.c:196:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(bytes);
data/transmission-3.00/libtransmission/web.c:789:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(str);
data/transmission-3.00/libtransmission/webseed.c:457:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tr_http_escape(buf, file->name, strlen(file->name), false);
data/transmission-3.00/libtransmission/webseed.c:603:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
w->base_url_len = strlen(url);
data/transmission-3.00/qt/OptionsDialog.cc:427:40: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int64_t numRead = myVerifyFile.read(myVerifyBuf, bytesThisPass);
data/transmission-3.00/third-party/dht/dht-example.c:177:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read(fd, myid, 20);
data/transmission-3.00/third-party/dht/dht-example.c:192:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read(fd, myid, 20);
data/transmission-3.00/third-party/dht/dht-example.c:211:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read(fd, &seed, sizeof(seed));
data/transmission-3.00/third-party/dht/dht-example.c:356:13: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(random() % 10000);
data/transmission-3.00/third-party/dht/dht-example.c:358:13: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(500000 + random() % 400000);
data/transmission-3.00/third-party/dht/dht-example.c:505:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(hash_return, crypt(key, "jc"), hash_size);
data/transmission-3.00/third-party/dht/dht-example.c:518:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read(fd, buf, size);
data/transmission-3.00/third-party/dht/dht.c:1733:17: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf, "]");
data/transmission-3.00/third-party/dht/dht.c:2833:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
message_len = strlen(message);
data/transmission-3.00/third-party/libb64/include/b64/decode.h:51:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
istream_in.read((char*)code, N);
data/transmission-3.00/third-party/libb64/include/b64/encode.h:56:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
istream_in.read(plaintext, N);
data/transmission-3.00/third-party/libnatpmp/getgateway.c:288:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
l = read(s, (char *)&m_rtmsg, sizeof(m_rtmsg));
data/transmission-3.00/third-party/libutp/utp.cpp:2590:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
(len - read) + conn->get_udp_overhead(),
data/transmission-3.00/third-party/libutp/utp.cpp:2658:57: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
conn->func.on_overhead(conn->userdata, false, (len - read) + conn->get_udp_overhead(),
data/transmission-3.00/third-party/miniupnpc/connecthostport.c:171:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tmp_host, host, MAXHOSTNAMELEN);
data/transmission-3.00/third-party/miniupnpc/minisoap.c:85:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bodysize = (int)strlen(body);
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:132:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(s, buffer, sizeof(buffer)); \
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:146:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(s, buffer, sizeof(buffer)); \
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:161:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(s, buffer, sizeof(buffer)); \
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:206:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(addr.sun_path, socketpath, sizeof(addr.sun_path));
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:232:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stsize = strlen(devtype);
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:277:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(s, buffer, sizeof(buffer));
data/transmission-3.00/third-party/miniupnpc/minissdpc.c:675:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ifr.ifr_name, multicastif, IFNAMSIZ);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:210:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(p, "></" SOAPPREFIX ":Body></" SOAPPREFIX ":Envelope>\r\n",
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:433:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(base);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:439:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l = n + strlen(url) + 1;
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:445:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l += 3 + strlen(ifname); /* 3 == strlen(%25) */
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:463:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(p + 3 + strlen(ifname), p, strlen(p) + 1);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:463:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(p + 3 + strlen(ifname), p, strlen(p) + 1);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:465:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(p + 3, ifname, strlen(ifname));
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:466:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n += 3 + strlen(ifname);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:468:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(p + 3 + strlen(scope_str), p, strlen(p) + 1);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:468:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(p + 3 + strlen(scope_str), p, strlen(p) + 1);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:470:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(p + 3, scope_str, strlen(scope_str));
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:471:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n += 3 + strlen(scope_str);
data/transmission-3.00/third-party/miniupnpc/miniupnpc.c:617:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(lanaddr, myLanAddr, lanaddrlen);
data/transmission-3.00/third-party/miniupnpc/miniwget.c:408:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(addr_str, inet_ntoa(((struct sockaddr_in *)&saddr)->sin_addr), addr_str_len);
data/transmission-3.00/third-party/miniupnpc/miniwget.c:580:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(hostname, p1, MIN(MAXHOSTNAMELEN, (int)(p2-p1)));
data/transmission-3.00/third-party/miniupnpc/miniwget.c:606:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(hostname, p1, MIN(MAXHOSTNAMELEN, (int)(p3-p1)));
data/transmission-3.00/third-party/miniupnpc/miniwget.c:611:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(hostname, p1, MIN(MAXHOSTNAMELEN, (int)(p2-p1)));
data/transmission-3.00/third-party/miniupnpc/portlistingparse.c:58:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(elements[i].str) == (size_t)l && memcmp(name, elements[i].str, l) == 0)
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:153:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(status, p, 64 );
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:168:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(lastconnerror, err, 64 );
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:209:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(connectionType, p, 64 );
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:321:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(extIpAdd, p, 16 );
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:458:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(reservedPort, p, 6);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:604:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rHost, p, 64);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:610:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(extPort, p, 6);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:617:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(protocol, p, 4);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:623:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(intClient, p, 16);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:630:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(intPort, p, 6);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:636:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(enabled, p, 4);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:642:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(desc, p, 80);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:648:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(duration, p, 16);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:745:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(intClient, p, 16);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:753:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(intPort, p, 6);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:760:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(enabled, p, 4);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:766:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(desc, p, 80);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:773:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(leaseDuration, p, 16);
data/transmission-3.00/third-party/miniupnpc/upnpcommands.c:1043:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(uniqueID, p, 8);
data/transmission-3.00/third-party/miniupnpc/upnpreplyparse.c:54:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(nv->name, data->curelt, 64);
data/transmission-3.00/utils/edit.c:172:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const inlen = strlen(in);
data/transmission-3.00/utils/edit.c:173:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const outlen = strlen(out);
data/transmission-3.00/utils/edit.c:182:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
evbuffer_add(buf, str, strlen(str));
data/transmission-3.00/utils/remote.c:579:76: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tr_rpc_parse_list_str(tr_variantDictAdd(args, TR_KEY_ids), id, strlen(id));
data/transmission-3.00/utils/remote.c:593:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (arg != NULL && strlen(arg) == 4)
data/transmission-3.00/utils/remote.c:795:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t const key_len = strlen(key);
data/transmission-3.00/utils/remote.c:3039:92: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (last_colon != NULL && first_colon != last_colon && (*s != '[' || *(s + strlen(s) - 1) != ']'))
ANALYSIS SUMMARY:
Hits = 878
Lines analyzed = 140884 in approximately 3.12 seconds (45101 lines/second)
Physical Source Lines of Code (SLOC) = 99642
Hits@level = [0] 504 [1] 214 [2] 590 [3] 36 [4] 38 [5] 0
Hits@level+ = [0+] 1382 [1+] 878 [2+] 664 [3+] 74 [4+] 38 [5+] 0
Hits/KSLOC@level+ = [0+] 13.8697 [1+] 8.81155 [2+] 6.66386 [3+] 0.742659 [4+] 0.381365 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.