Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataBoundaryExtractor.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataBifurcationProfiles.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCapPolyData.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineBranchExtractor.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataBranchSections.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineBifurcationReferenceSystems.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataLocalGeometry.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyBallLine.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlineAbscissaMetricFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataBifurcationSections.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineUtilities.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataPatchingFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineReferenceSystemAttributesOffset.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineReferenceSystemAttributesOffset.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkNonManifoldSteepestDescent.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineUtilities.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineBifurcationVectors.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkMinHeap.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineSmoothing.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataBranchSections.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkNonManifoldFastMarching.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkMergeCenterlines.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkMergeCenterlines.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineEndpointExtractor.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineBifurcationReferenceSystems.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineGeometry.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineGeometry.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataBranchUtilities.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineEndpointExtractor.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineAttributesFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlineAbscissaMetricFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlineMetricFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataStretchMappingFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlineMetricFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineBranchExtractor.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyBall.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkUnstructuredGridCenterlineGroupsClipper.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkBoundaryReferenceSystems.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineSplittingAndGroupingFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkInternalTetrahedraExtractor.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataScissors.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyBall.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkNonManifoldFastMarching.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineBifurcationVectors.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineAttributesFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataBranchUtilities.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkInternalTetrahedraExtractor.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineSmoothing.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkSimplifyVoronoiDiagram.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlineGroupsClipper.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataDistanceToCenterlines.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkUnstructuredGridCenterlineSections.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyBallModeller.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataLineEmbedder.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlines.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataLocalGeometry.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataStretchMappingFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkNonManifoldSteepestDescent.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlineSections.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineSplitExtractor.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlineProjection.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkVoronoiDiagram3D.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlineAngularMetricFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkAppendFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataFlowExtensionsFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyBallLine.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkVoronoiDiagram3D.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkSteepestDescentLineTracer.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkReferenceSystemUtilities.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkSimplifyVoronoiDiagram.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlineAngularMetricFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkSteepestDescentShooter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineBranchGeometry.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineSphereDistance.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataDistanceToCenterlines.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlines.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataScissors.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlineSections.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkSteepestDescentShooter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCapPolyData.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineSphereDistance.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkMinHeap.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkReferenceSystemUtilities.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkBoundaryReferenceSystems.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkAppendFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataReferenceSystemBoundaryMetricFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkUnstructuredGridCenterlineSections.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataFlowExtensionsFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataBifurcationSections.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyBallModeller.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkSteepestDescentLineTracer.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineBranchGeometry.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataBifurcationProfiles.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataBoundaryExtractor.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataReferenceSystemBoundaryMetricFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlineProjection.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineSplittingAndGroupingFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkUnstructuredGridCenterlineGroupsClipper.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlineGroupsClipper.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataPatchingFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkCenterlineSplitExtractor.h Examining data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataLineEmbedder.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkDataSetItems.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkEmptyNeighborhood.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridFEVorticityAssembler.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataMultipleCylinderHarmonicMappingFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataFELaplaceBeltramiStencil.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataFELaplaceBeltramiStencil.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataUmbrellaStencil.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridHarmonicMappingFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataRigidSurfaceModelling.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataDiscreteElasticaFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataManifoldStencil.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkEllipticProblem.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataAreaWeightedUmbrellaStencil.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataClampedSmoothingFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkItem.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataFELaplaceAssembler.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataGradientStencil.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkDataSetItem.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridVorticityFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataManifoldExtendedNeighborhood.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkEmptyNeighborhood.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataFELaplaceAssembler.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkDirichletBoundaryConditions.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataSurfaceRemeshing.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkNeighborhood.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkSparseMatrixRow.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkNeighborhoods.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkStencil.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkGaussQuadrature.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkDoubleVector.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridFELaplaceAssembler.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataUmbrellaStencil.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataFEGradientAssembler.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataFVFELaplaceBeltramiStencil.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataSurfaceRemeshing.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridGradientFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataMeanCurvature.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkStencils.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkEmptyStencil.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataMeanCurvature.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridNeighborhood.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkLinearSystemSolver.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridFEGradientAssembler.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataFVFELaplaceBeltramiStencil.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataLaplaceBeltramiStencil.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataFEGradientAssembler.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkStencil.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkFEShapeFunctions.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataGradientFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataAreaWeightedUmbrellaStencil.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkSparseMatrix.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkDataSetItem.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataGradientStencil.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkSparseMatrix.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridGradientFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkFEAssembler.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridHarmonicMappingFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkItems.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkFEShapeFunctions.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkDoubleVector.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataManifoldExtendedNeighborhood.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkNeighborhoods.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataRigidSurfaceModelling.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkItem.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataCylinderHarmonicMappingFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataCylinderHarmonicMappingFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataLaplaceBeltramiStencil.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkLinearSystemSolver.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridFEGradientAssembler.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkFEAssembler.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataHarmonicMappingFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridVorticityFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkSparseMatrixRow.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridNeighborhood.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataDiscreteElasticaFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkBoundaryConditions.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataStencilFlowFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataManifoldNeighborhood.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkBoundaryConditions.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkNeighborhood.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkEmptyStencil.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataManifoldStencil.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataNeighborhood.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataHarmonicMappingFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkLinearSystem.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataClampedSmoothingFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkEllipticProblem.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkDirichletBoundaryConditions.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkStencils.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkOpenNLLinearSystemSolver.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkItems.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataNeighborhood.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridFELaplaceAssembler.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkOpenNLLinearSystemSolver.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataGradientFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkGaussQuadrature.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataManifoldNeighborhood.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataMultipleCylinderHarmonicMappingFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkLinearSystem.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkDataSetItems.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataStencilFlowFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridFEVorticityAssembler.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataBoundaryExtractor.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStreamlineClusteringFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkMeshVorticity.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkMeshVelocityStatistics.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStreamlineOsculatingCentersFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkCurvedMPRImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkSurfMeshWrapper.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataSizingFunction.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkLevelSetSigmoidFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkUnstructuredGridTetraFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkMeshLambda2.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkSimpleCapPolyData.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkCurvedMPRImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkMeshProjection.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkSurfaceDistance.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkAnnularCapPolyData.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStaticTemporalInterpolatedVelocityField.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkSmoothCapPolyData.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataKiteRemovalFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkSurfaceDistance.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkRBFInterpolation.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkMeshWallShearRate.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkLinearToQuadraticSurfaceMeshFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkMeshProjection.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataNetworkExtraction.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStaticTemporalStreamTracer.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStaticTemporalInterpolatedVelocityField.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStreamlineToParticlesFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkLevelSetSigmoidFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkRBFInterpolation.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkSurfaceProjection.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkAnnularCapPolyData.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkSurfaceProjection.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataKiteRemovalFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkIterativeClosestPointTransform.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkImageBoxPainter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStreamlineToParticlesFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStreamlineOsculatingCentersFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkLinearToQuadraticMeshFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkIterativeClosestPointTransform.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkMeshVorticity.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataNetworkExtraction.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkSurfMeshWrapper.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkUnstructuredGridTetraFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataToUnstructuredGridFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkSimpleCapPolyData.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkTopologicalSeamFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkImageBoxPainter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataNormalPlaneEstimator.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataNormalPlaneEstimator.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataToUnstructuredGridFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkMeshLambda2.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkBoundaryLayerGenerator.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkBoundaryLayerGenerator.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkLinearToQuadraticMeshFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkTetGenWrapper.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkTetGenWrapper.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStaticTemporalStreamTracer.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkLinearToQuadraticSurfaceMeshFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkMeshVelocityStatistics.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataBoundaryExtractor.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataSizingFunction.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkTopologicalSeamFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkLinearizeMeshFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkMeshWallShearRate.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkLinearizeMeshFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStreamlineClusteringFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkSmoothCapPolyData.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkPolyDataDijkstraDistanceToPoints.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkPolyBallLine2.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkCenterlineInterpolateArray.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkRBFInterpolation2.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkRBFInterpolation2.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkPolyDataSampleFunction.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkCenterlineInterpolateArray.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkPolyDataDijkstraDistanceToPoints.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkCellDimensionFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkPolyDataSampleFunction.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkBoundaryLayerGenerator2.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkDolfinWriter2.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkBoundaryLayerGenerator2.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkPolyDataGeodesicRBFInterpolation.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkPolyBallLine2.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkPolyDataDistanceToSpheres.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkConcaveAnnularCapPolyData.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkSurfaceProjectCellArray.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkPolyDataGeodesicRBFInterpolation.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkDolfinWriter2.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkCellDimensionFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkPolyDataDistanceToSpheres.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkSurfaceProjectCellArray.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Contrib/vtkvmtkConcaveAnnularCapPolyData.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTWriter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenWriter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenReader.h Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTWriter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkPNGWriter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkDICOMImageReader.h Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkDolfinWriter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkXdaWriter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenReader.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenWriter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.h Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkPNGWriter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkXdaReader.h Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkXdaWriter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkXdaReader.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkDolfinWriter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkDICOMImageReader.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Common/vtkvmtkConstants.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Common/vtkvmtkMath.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Common/vtkvmtkMath.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Common/vtkvmtkWin32Header.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/classify.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/insertion.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/smoothing.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/top.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/main.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/vector.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/quadric.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/arraypoolstack.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/journal.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Stellar.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/print.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/quality.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/topological.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/size.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/anisotropy.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/improve.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/interact.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/predicates.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/vtkvmtkITK/vtkvmtkITKUtility.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/vtkvmtkITK/vtkvmtkITKImageWriter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/vtkvmtkITK/vtkvmtkITKArchetypeImageSeriesReader.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/vtkvmtkITK/vtkvmtkITKArchetypeImageSeriesScalarReader.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/vtkvmtkITK/vtkvmtkITKArchetypeImageSeriesReader.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/vtkvmtkITK/vtkvmtkITKWin32Header.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/vtkvmtkITK/vtkvmtkITK.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/vtkvmtkITK/vtkITKUtility.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/vtkvmtkITK/vtkvmtkITKImageWriter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/vtkvmtkITK/vtkvmtkITKArchetypeImageSeriesScalarReader.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/OpenNL/nl_single_file.c Examining data/vmtk-1.3+dfsg/vtkVmtk/Utilities/OpenNL/nl.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Rendering/vtkvmtkImagePlaneWidget.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Rendering/vtkvmtkImagePlaneWidget.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Rendering/vtkvmtkInteractorStyleTrackballCamera.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Rendering/vtkvmtkInteractorStyleTrackballCamera.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkOtsuMultipleThresholdsImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/itkHessianSmoothed3DToVesselnessMeasureImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkConstrainedLaplacianPolyDataFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkUpwindGradientMagnitudeImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkOtsuMultipleThresholdsImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkLaplacianSegmentationLevelSetImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkDanielssonDistanceMapImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkFastMarchingDirectionalFreezeImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkSigmoidImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkGradientMagnitudeRecursiveGaussianImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkGrayscaleMorphologyImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkVesselnessMeasureImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/itkFastMarchingDirectionalFreezeImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkVesselEnhancingDiffusion3DImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkNormalizeImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkThresholdSegmentationLevelSetImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkVesselEnhancingDiffusionImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkThresholdSegmentationLevelSetImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkSatoVesselnessMeasureImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkGradientMagnitudeImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkSigmoidImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkLaplacianSegmentationLevelSetImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkRecursiveGaussianImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/itkVesselEnhancingDiffusion3DImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkGeodesicActiveContourLevelSet2DImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkSatoVesselnessMeasureImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkRecursiveGaussianImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkRecursiveGaussian2DImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkBoundedReciprocalImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkVesselnessMeasureImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkPolyDataPotentialFit.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkFastMarchingUpwindGradientImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkGradientMagnitudeRecursiveGaussian2DImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkCollidingFrontsImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/itkAnisotropicDiffusionVesselEnhancementFunction.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkActiveTubeFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkGeodesicActiveContourLevelSetImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkDanielssonDistanceMapImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkGrayscaleMorphologyImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkCurvesLevelSetImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkPolyDataPotentialFit.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkUpwindGradientMagnitudeImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkFWHMFeatureImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/itkFWHMFeatureImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkBoundedReciprocalImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkCollidingFrontsImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkNormalizeImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkITKFilterUtilities.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkGeodesicActiveContourLevelSetImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkFWHMFeatureImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkFastMarchingUpwindGradientImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkVesselEnhancingDiffusion3DImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkActiveTubeFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkGradientMagnitudeRecursiveGaussianImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkVesselEnhancingDiffusionImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkGradientMagnitudeImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkCardinalSpline.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/itkSymmetricEigenVectorAnalysisImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkObjectnessMeasureImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkCurvesLevelSetImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkConstrainedLaplacianPolyDataFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/itkAnisotropicDiffusionVesselEnhancementImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/itkUpwindGradientMagnitudeImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/itkFastMarchingUpwindGradientImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkObjectnessMeasureImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkCardinalSpline.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkFastMarchingDirectionalFreezeImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkGradientMagnitudeRecursiveGaussian2DImageFilter.cxx Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkRecursiveGaussian2DImageFilter.h Examining data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkGeodesicActiveContourLevelSet2DImageFilter.h FINAL RESULTS: data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkNonManifoldFastMarching.cxx:752:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(eikonalSolutionArrayName,this->SolutionArrayName); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkOpenNLLinearSystemSolver.cxx:42:24: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. vtkvmtkSparseMatrix *system; data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:87:11: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ret = fscanf(FDNEUTFile, "%s", buffer); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:124:10: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. while (fscanf(FDNEUTFile, "%s", buffer)!=EOF) data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:127:13: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ret = fscanf(FDNEUTFile, "%s", buffer); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:130:13: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ret = fscanf(FDNEUTFile, "%s", buffer); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:133:13: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ret = fscanf(FDNEUTFile, "%s", buffer); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:137:11: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ret = fscanf(FDNEUTFile, "%s", buffer); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:138:11: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ret = fscanf(FDNEUTFile, "%s", buffer); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:141:11: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. ret = fscanf(FDNEUTFile, "%s", currentEntityName); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkPNGWriter.cxx:172:7: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(this->InternalFileName,"%s",this->FileName); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkPNGWriter.cxx:178:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(this->InternalFileName, this->FilePattern, data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkPNGWriter.cxx:183:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(this->InternalFileName, this->FilePattern,this->FileNumber); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStaticTemporalInterpolatedVelocityField.cxx:173:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(name,"%s%d",prefix,index); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkTetGenWrapper.cxx:423:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tetgenOptions,tetgenOptionString.c_str()); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:821:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->inpolyfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:822:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->inelefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:823:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->areafilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:826:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(workstring, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:855:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->outnodefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:856:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->outelefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:857:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->edgefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:858:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->facefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:859:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->vnodefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:860:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->vpolyfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:861:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->neighborfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:862:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->offfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:873:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->outnodefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:874:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->outpolyfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:875:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->outelefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:876:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->edgefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:877:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->facefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:878:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->vnodefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:879:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->vpolyfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:880:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->neighborfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:881:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->offfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:896:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(b->outnodefilename, workstring, meshnumber + 1); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:897:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->outpolyfilename, b->outnodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:898:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->outelefilename, b->outnodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:899:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->edgefilename, b->outnodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:900:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->facefilename, b->outnodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:901:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->vnodefilename, b->outnodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:902:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->vpolyfilename, b->outnodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:903:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->neighborfilename, b->outnodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:904:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->offfilename, b->outnodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:4209:9: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf(errstring); \ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:315:9: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf(errstring); \ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/interact.c:111:23: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. numassigned = sscanf(line, "%s %d %s %s", word, &value, fstr, str); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/interact.c:171:45: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if (strcmp(word,"fileprefix") == 0) strcpy(b->fileprefix, str); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/journal.c:994:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:459:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(workstring, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:502:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(b->innodefilename, workstring, meshnumber + 1); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:510:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->innodefilename, improvebehave.fileprefix); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:515:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->outnodefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:518:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(b->outnodefilename, framenumber); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:523:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(b->outelefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:526:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(b->outelefilename, framenumber); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:531:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(facefilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:534:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(facefilename, framenumber); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:539:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(qualfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:542:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(qualfilename, framenumber); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:547:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(minangfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:550:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(minangfilename, framenumber); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:555:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(maxangfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:558:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(maxangfilename, framenumber); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:563:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(vlrmsfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:566:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(vlrmsfilename, framenumber); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:571:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(rnrrfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:574:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(rnrrfilename, framenumber); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:579:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(statsfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:582:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(statsfilename, framenumber); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:589:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(animfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:590:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(animfilename, framenumber); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:592:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tagmapfilename, b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:593:9: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(tagmapfilename, framenumber); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1063:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nodefilename[i], filename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1064:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(polyfilename[i], filename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1065:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(elefilename[i], filename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1066:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(edgefilename[i], filename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1067:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(partfilename[i], filename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1068:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(adjfilename[i], filename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1069:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(vnodefilename[i], filename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1070:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(vedgefilename[i], filename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1071:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(datafilename[i], filename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1075:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(nodefilename[i], numberstring); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1076:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(polyfilename[i], numberstring); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1077:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(elefilename[i], numberstring); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1078:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(edgefilename[i], numberstring); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1079:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(partfilename[i], numberstring); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1080:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(adjfilename[i], numberstring); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1081:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(vnodefilename[i], numberstring); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1082:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(vedgefilename[i], numberstring); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1083:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(datafilename[i], numberstring); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:5466:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outstring, instring); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:172:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(innodefilename, filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:245:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(varfilename, filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:357:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mtrfilename, filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:422:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(innodefilename, filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:423:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(inpolyfilename, filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:424:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(insmeshfilename, filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1647:5: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s", id); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1653:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s %d %s", id, &nverts, fmt); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1715:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s %d %d", id, &nfaces, &dummy); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1869:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(innodefilename, filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1870:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(inelefilename, filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1871:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(infacefilename, filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1872:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(inedgefilename, filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1873:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(involfilename, filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2188:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outnodefilename, "%s.node", filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2214:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outmtrfilename, "%s.mtr", filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2240:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outelefilename, "%s.ele", filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2287:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outfacefilename, "%s.face", filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2316:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outedgefilename, "%s.edge", filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2344:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outneighborfilename, "%s.neigh", filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2379:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outpolyfilename, "%s.poly", filebasename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2744:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(commandline, argv[0]); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2753:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(commandline, argv[i]); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:3032:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(workstring, infilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:3053:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outfilename, infilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:3055:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outfilename, infilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:3061:5: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(outfilename, workstring, meshnumber + 1); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:3064:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(addinfilename, infilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:3067:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(bgmeshfilename, infilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:30668:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outnodefilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:30869:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outmtrfilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31010:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outelefilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31191:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(facefilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31356:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(facefilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31462:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(facefilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31619:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(edgefilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31755:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(edgefilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31839:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(neighborfilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31952:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outfilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32027:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outfilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32131:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outfilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32258:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outfilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32380:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(smefilename, smfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32382:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(smefilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32386:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nodfilename, smefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32487:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mefilename, mfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32489:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mefilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32633:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(gidfilename, gfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32635:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(gidfilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32695:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(gidfilename, gfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32697:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(gidfilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32787:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(offfilename, ofilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32789:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(offfilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32871:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(vtkfilename, ofilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32873:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(vtkfilename, b->outfilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/vtkvmtkITK/vtkvmtkITKImageWriter.cxx:308:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(this->FileName, name); data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkNonManifoldFastMarching.cxx:641:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char eikonalSolutionArrayName[512]; data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkNonManifoldFastMarching.cxx:756:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(eikonalSolutionArrayName,"EikonalSolution"); data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlines.cxx:58:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(this->CostFunction,"1/R"); data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlines.cxx:61:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(this->CostFunctionArrayName,"CostFunctionArray"); data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlines.cxx:64:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(this->EikonalSolutionArrayName,"EikonalSolutionArray"); data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlines.cxx:67:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(this->EdgeArrayName,"EdgeArray"); data/vmtk-1.3+dfsg/vtkVmtk/ComputationalGeometry/vtkvmtkPolyDataCenterlines.cxx:70:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(this->EdgePCoordArrayName,"EdgePCoordArray"); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkDoubleVector.cxx:94:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->Array, src->Array, src->NumberOfElements * sizeof(double)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkDoubleVector.cxx:100:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->Array, array, numberOfElements * sizeof(double)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkDoubleVector.cxx:254:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->Array, src->Array, src->NumberOfElements * sizeof(double)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkNeighborhood.cxx:50:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pointIds, this->PointIds,this->NPoints*sizeof(vtkIdType)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkNeighborhood.cxx:81:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->PointIds, neighborhoodSrc->PointIds, this->NPoints * sizeof(vtkIdType)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataManifoldExtendedNeighborhood.cxx:113:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->PointIds,extendedStencilIds->GetPointer(0),this->NPoints*sizeof(vtkIdType)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataManifoldNeighborhood.cxx:171:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->PointIds,stencilIds->GetPointer(0),this->NPoints*sizeof(vtkIdType)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataManifoldStencil.cxx:119:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->PointIds,manifoldNeighborhood->GetPointer(0),this->NPoints*sizeof(vtkIdType)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkPolyDataNeighborhood.cxx:83:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->PointIds,stencilIds->GetPointer(0),this->NPoints*sizeof(vtkIdType)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkSparseMatrixRow.cxx:194:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->ElementIds, src->ElementIds, this->NElements * sizeof(vtkIdType)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkSparseMatrixRow.cxx:196:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->Elements, src->Elements, this->NElements * sizeof(double)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkStencil.cxx:72:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(weights, this->Weights,this->NumberOfComponents*this->NPoints*sizeof(double)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkStencil.cxx:159:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->Weights, stencilSrc->Weights, this->NumberOfComponents*this->NPoints * sizeof(double)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkStencil.cxx:163:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->CenterWeight, stencilSrc->CenterWeight, this->NumberOfComponents * sizeof(double)); data/vmtk-1.3+dfsg/vtkVmtk/DifferentialGeometry/vtkvmtkUnstructuredGridNeighborhood.cxx:87:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(this->PointIds,stencilIds->GetPointer(0),this->NPoints*sizeof(vtkIdType)); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:75:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FDNEUTFile = fopen(this->FileName,"r"); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:83:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:140:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char currentEntityName[256]; data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTWriter.cxx:49:22: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE* FDNEUTFile = fopen(this->FileName,"w"); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTWriter.cxx:202:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cellPoints,pts,npts*sizeof(vtkIdType)); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx:181:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[200]; data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx:183:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str,"(10 (0 1 %x 1 3))",numberOfPoints); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx:185:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str,"(10 (1 1 %x 1 3)(",numberOfPoints); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx:194:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str," %17.10e %17.10e %17.10e",point[0],point[1],point[2]); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx:203:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str,"(13 (0 1 %x 0))",numberOfInteriorFaces+numberOfTriangles); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx:236:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str,"(13 (%x %x %x 3 0)(",entityId,faceOffset,faceOffset+numberOfBoundaryTriangles-1); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx:253:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str," 3 %x %x %x %x 0",(int)id0+1,(int)id1+1,(int)id2+1,(int)tetraCellId+1); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx:260:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str,"(13 (%x %x %x 2 0)(",(int)entityId,faceOffset,faceOffset+numberOfInteriorFaces-1); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx:291:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str," 3 %x %x %x %x %x",(int)id0+1,(int)id1+1,(int)id2+1,(int)tetraCellIdMap->GetId(tetraCellId)+1,(int)tetraCellIdMap->GetId(neighborCellIds->GetId(0))+1); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx:301:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str,"(12 (0 1 %x 0))",numberOfTetras); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx:303:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str,"(12 (2 1 %x 1 2))",numberOfTetras); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx:317:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str,"(45 (%x wall surface%d)())",entityId,entityId); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFluentWriter.cxx:321:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(str,"(45 (%x interior default-interior)())",entityId); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkPNGWriter.cxx:49:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char end[3]; data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenReader.cxx:124:15: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nodeCount = atoi(tokens[0].c_str()); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenReader.cxx:125:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). dim = atoi(tokens[1].c_str()); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenReader.cxx:126:24: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). numberOfAttributes = atoi(tokens[2].c_str()); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenReader.cxx:127:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). boundaryMarkers = atoi(tokens[3].c_str()); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenReader.cxx:164:13: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). index = atoi(tokens[0].c_str()); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenReader.cxx:181:20: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). boundaryId = atoi(tokens[4+numberOfAttributes].c_str()); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenReader.cxx:205:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). tetCount = atoi(tokens[0].c_str()); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenReader.cxx:206:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nodesPerTet = atoi(tokens[1].c_str()); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenReader.cxx:207:28: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). numberOfCellAttributes = atoi(tokens[2].c_str()); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenReader.cxx:243:13: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). index = atoi(tokens[0].c_str()); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkTetGenReader.cxx:248:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). pointId = atoi(tokens[j+1].c_str()); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataNetworkExtraction.cxx:51:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(this->MarksArrayName,"Marks"); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataNetworkExtraction.cxx:53:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(this->RadiusArrayName,"Radius"); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkPolyDataNetworkExtraction.cxx:55:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(this->TopologyArrayName,"Topology"); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStaticTemporalInterpolatedVelocityField.cxx:234:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char arrayName[1024]; data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStaticTemporalStreamTracer.cxx:447:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(point2, point1, 3*sizeof(double)); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStaticTemporalStreamTracer.cxx:450:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(point1t, point1, 3*sizeof(double)); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStaticTemporalStreamTracer.cxx:595:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lastPoint, point2, 3*sizeof(double)); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStaticTemporalStreamTracer.cxx:625:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(point2t, point2, 3*sizeof(double)); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkStaticTemporalStreamTracer.cxx:632:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lastPoint, point2, 3*sizeof(double)); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkTetGenWrapper.cxx:116:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[64]; data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkTetGenWrapper.cxx:136:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer,"%f",this->MinRatio); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkTetGenWrapper.cxx:139:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer,"%f",this->MinDihedral); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkTetGenWrapper.cxx:142:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer,"%f",this->MaxDihedral); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkTetGenWrapper.cxx:162:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer,"%e",this->Epsilon); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkTetGenWrapper.cxx:173:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buffer,"%f",this->MaxVolume); data/vmtk-1.3+dfsg/vtkVmtk/Misc/vtkvmtkTetGenWrapper.cxx:422:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tetgenOptions[512]; data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkITKFilterUtilities.h:179:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(static_cast<PixelType*>(output->GetScalarPointer()),input->GetBufferPointer(),input->GetBufferedRegion().GetNumberOfPixels()*sizeof(PixelType)); data/vmtk-1.3+dfsg/vtkVmtk/Segmentation/vtkvmtkITKFilterUtilities.h:254:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(static_cast<OutputPixelType*>(output->GetScalarPointer()),outImage->GetBufferPointer(),outImage->GetBufferedRegion().GetNumberOfPixels()*sizeof(OutputPixelType)); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/OpenNL/nl_single_file.c:2776:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char *UL[2] = { "U", "L" }; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/OpenNL/nl_single_file.c:2777:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char *T[3] = { "N", "T", 0 }; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/OpenNL/nl_single_file.c:2778:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char *D[2] = { "U", "N" }; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/OpenNL/nl_single_file.c:2788:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char *T[3] = { "N", "T", 0 }; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:257:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char innodefilename[FILENAMESIZE]; /* Input .node file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:258:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inelefilename[FILENAMESIZE]; /* Input .ele file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:259:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inpolyfilename[FILENAMESIZE]; /* Input .poly file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:260:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char areafilename[FILENAMESIZE]; /* Input .area file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:261:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outnodefilename[FILENAMESIZE]; /* Output .node file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:262:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outelefilename[FILENAMESIZE]; /* Output .ele file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:263:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outpolyfilename[FILENAMESIZE]; /* Output .poly file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:264:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char edgefilename[FILENAMESIZE]; /* Output .edge file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:265:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char facefilename[FILENAMESIZE]; /* Output .face file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:266:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vnodefilename[FILENAMESIZE]; /* Output .v.node file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:267:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vpolyfilename[FILENAMESIZE]; /* Output .v.poly file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:268:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char neighborfilename[FILENAMESIZE]; /* Output .neigh file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:269:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char offfilename[FILENAMESIZE]; /* Output .off file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:528:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char workstring[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:863:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->outnodefilename, ".node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:864:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->outelefilename, ".ele"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:865:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->edgefilename, ".edge"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:866:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->facefilename, ".face"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:867:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->vnodefilename, ".v.node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:868:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->vpolyfilename, ".v.poly"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:869:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->neighborfilename, ".neigh"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:870:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->offfilename, ".off"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:882:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->outnodefilename, ".1.node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:883:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->outpolyfilename, ".1.poly"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:884:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->outelefilename, ".1.ele"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:885:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->edgefilename, ".1.edge"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:886:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->facefilename, ".1.face"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:887:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->vnodefilename, ".1.v.node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:888:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->vpolyfilename, ".1.v.poly"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:889:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->neighborfilename, ".1.neigh"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:890:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->offfilename, ".1.off"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:905:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->outnodefilename, ".node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:906:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->outpolyfilename, ".poly"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:907:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->outelefilename, ".ele"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:908:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->edgefilename, ".edge"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:909:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->facefilename, ".face"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:910:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->vnodefilename, ".v.node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:911:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->vpolyfilename, ".v.poly"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:912:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->neighborfilename, ".neigh"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:913:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->offfilename, ".off"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:915:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->innodefilename, ".node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:916:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->inpolyfilename, ".poly"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:917:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->inelefilename, ".ele"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:918:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->areafilename, ".area"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:4083:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char atombuffer[MOLECULESIZE + 3 * COMPRESSEDTAGLENGTH]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:4798:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nextculeatoms[COMPRESSEDTAGLENGTH]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:5315:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char firstbuffer[STARTBUFFERSIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:5546:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char newvertexatoms[2 * COMPRESSEDTAGLENGTH + 1]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:5970:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ghostatom[1]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:6246:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char newvertexatoms[COMPRESSEDTAGLENGTH]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:7499:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char newtextatoms[2 * COMPRESSEDTAGLENGTH]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:14072:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:14138:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:14152:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). *polyfile = fopen(behave->inpolyfilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:14209:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(behave->innodefilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:14503:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:14520:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). elefile = fopen(behave->inelefilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:14775:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(behave->outnodefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:14918:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(behave->outelefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:15022:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(behave->edgefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:15171:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(behave->facefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:485:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char innodefilename[FILENAMESIZE]; /* Input .node file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:486:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inelefilename[FILENAMESIZE]; /* Input .ele file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:487:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inpolyfilename[FILENAMESIZE]; /* Input .poly file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:488:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char areafilename[FILENAMESIZE]; /* Input .area file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:489:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outnodefilename[FILENAMESIZE]; /* Output .node file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:490:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outelefilename[FILENAMESIZE]; /* Output .ele file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:491:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outpolyfilename[FILENAMESIZE]; /* Output .poly file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:492:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char edgefilename[FILENAMESIZE]; /* Output .edge file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:493:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char facefilename[FILENAMESIZE]; /* Output .face file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:494:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vnodefilename[FILENAMESIZE]; /* Output .v.node file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:495:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vpolyfilename[FILENAMESIZE]; /* Output .v.poly file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:496:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char neighborfilename[FILENAMESIZE]; /* Output .neigh file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.h:497:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char offfilename[FILENAMESIZE]; /* Output .off file. */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/arraypoolstack.c:134:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(totet, fromtet, sizeof(struct improvetet)); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/arraypoolstack.c:141:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(stack, &newstack, sizeof(struct arraypoolstack)); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/arraypoolstack.c:170:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(totet, fromtet, sizeof(struct improvetet)); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/arraypoolstack.c:747:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(totet, fromtet, sizeof(struct improvetet)); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/improve.c:328:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char **argv, data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/insertion.c:286:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&list[*listsize], tet, sizeof(struct cavitytet)); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/insertion.c:335:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&tet->outfaces[whichface], face, sizeof(struct cavityface)); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/interact.c:88:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char word[100]; /* variable name from config file */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/interact.c:91:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[100]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/interact.c:92:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fstr[100]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/interact.c:96:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[1000]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/interact.c:99:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *in = fopen(filename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/interact.c:286:39: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). improvebehave.verbosity = atoi(argv[i+1]); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/journal.c:218:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(toentry, fromentry, sizeof(struct journalentry)); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/journal.c:254:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(journal, &newjournal, sizeof(struct arraypoolstack)); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/journal.c:985:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[300]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/journal.c:1003:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(filename, ".journal"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/journal.c:1011:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(filename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/journal.c:1079:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(journalfilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:70:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(behave->outnodefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:169:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(filename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:233:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(filename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:278:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(filename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:327:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(filename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:370:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(filename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:439:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char qualfilename[300]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:440:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char minangfilename[300]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:441:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char maxangfilename[300]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:442:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vlrmsfilename[300]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:443:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char rnrrfilename[300]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:444:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char facefilename[300]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:445:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char statsfilename[300]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:446:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char animfilename[300]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:447:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tagmapfilename[300]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:448:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char framenumber[10]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:451:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char workstring[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:454:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(framenumber, "_p%04d", passnum); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:520:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->outnodefilename, ".node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:528:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(b->outelefilename, ".ele"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:536:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(facefilename, ".face"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:544:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(qualfilename, ".minsine"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:552:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(minangfilename, ".minang"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:560:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(maxangfilename, ".maxang"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:568:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(vlrmsfilename, ".vlrms"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:576:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(rnrrfilename, ".nrr"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:584:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(statsfilename, ".stats"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:591:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(animfilename, ".anim"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:594:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(tagmapfilename, ".tagmap"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:335:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:336:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nodefilename[2][FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:337:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char polyfilename[2][FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:338:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char elefilename[2][FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:339:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char edgefilename[2][FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:340:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char partfilename[2][FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:341:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char adjfilename[2][FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:342:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vnodefilename[2][FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:343:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vedgefilename[2][FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:344:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char datafilename[2][FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1059:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char numberstring[100]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1074:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(numberstring, ".%d", lowermeshnumber + i); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1086:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(nodefilename[i], ".node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1087:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(polyfilename[i], ".poly"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1088:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(elefilename[i], ".ele"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1089:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(edgefilename[i], ".edge"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1090:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(partfilename[i], ".part"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1091:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(adjfilename[i], ".adj"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1092:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(vnodefilename[i], ".v.node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1093:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(vedgefilename[i], ".v.edge"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1094:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(datafilename[i], ".data"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:2449:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:2468:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(fname, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:2650:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:2666:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(fname, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3058:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3070:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(fname, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3195:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3206:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(fname, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3362:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3375:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(fname, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3527:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3534:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(fname, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3577:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3588:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(fname, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3850:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char rotatewinname[2]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3880:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(rotatewinname, "%d", i); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3948:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char numberstring[32]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:3949:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buttonstring[6]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4013:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(numberstring, "%d", loweriteration + 1); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4014:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buttonstring, "%-4.4s+", numberstring); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4017:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(numberstring, "%d", loweriteration); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4019:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buttonstring, "%-4.4s", numberstring); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4021:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buttonstring, "%-4.4s-", numberstring); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4182:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char answer[132]; /* A temporary global so no mallocing is done by get_line */ data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4190:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[10]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4268:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char grayname[8]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4334:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(grayname, "gray%d", data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:5468:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(outstring, ".eps"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:5470:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(outstring, ".ps"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:5483:11: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). *file = fopen(fname, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:6334:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char psfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/top.c:395:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fileprefix[100]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/top.c:871:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(A2, A1, sizeof(tag)*length); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/top.c:879:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(A2, A1, sizeof(starreal)*3*length); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/top.c:1288:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. { char command[13]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/top.c:1293:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(command, "%c[%d;%d;%dm", 0x1B, attr, fg + 30, bg + 40); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/topological.c:3059:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outstack, &savestack, sizeof(struct arraypoolstack)); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/topological.c:3181:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outstack, &savestack, sizeof(struct arraypoolstack)); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/topological.c:3364:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outstack, &savestack, sizeof(struct arraypoolstack)); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:54:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:165:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char innodefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:166:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:173:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(innodefilename, ".node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:176:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(innodefilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:238:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char varfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:239:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:246:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(varfilename, ".var"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:247:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(varfilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:350:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mtrfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:351:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:358:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(mtrfilename, ".mtr"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:359:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(mtrfilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:412:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char innodefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:413:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inpolyfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:414:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char insmeshfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:415:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:425:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(innodefilename, ".node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:426:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inpolyfilename, ".poly"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:427:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(insmeshfilename, ".smesh"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:432:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). polyfile = fopen(inpolyfilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:435:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). polyfile = fopen(insmeshfilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:485:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(innodefilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:899:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:900:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:915:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(infilename, ".off"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:918:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(fp = fopen(infilename, "r"))) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1047:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1048:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1063:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(infilename, ".ply"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1066:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(fp = fopen(infilename, "r"))) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1254:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1255:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1270:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(infilename, ".stl"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1273:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(fp = fopen(infilename, "r"))) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1383:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1384:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1402:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(infilename, ".mesh"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1405:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(fp = fopen(infilename, "r"))) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1606:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1607:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1608:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mode[128], id[256], fmt[64]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1629:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(infilename, ".vtk"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1631:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(fp = fopen(infilename, "r"))) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1639:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(mode, "BINARY"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1649:7: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(mode, "ASCII"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1855:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char innodefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1856:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inelefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1857:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infacefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1858:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inedgefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1859:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char involfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1860:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inputline[INPUTLINESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1874:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(innodefilename, ".node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1875:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inelefilename, ".ele"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1876:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(infacefilename, ".face"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1877:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(inedgefilename, ".edge"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1878:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(involfilename, ".vol"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1883:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(infilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1937:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(infilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2019:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(infilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2083:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(infilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2135:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile = fopen(infilename, "r"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2184:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outnodefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2185:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outmtrfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2190:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fout = fopen(outnodefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2216:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fout = fopen(outmtrfilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2237:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outelefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2242:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fout = fopen(outelefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2284:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outfacefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2289:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fout = fopen(outfacefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2313:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outedgefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2318:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fout = fopen(outedgefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2341:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outneighborfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2346:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fout = fopen(outneighborfilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2376:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outpolyfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2381:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fout = fopen(outpolyfilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2735:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char workstring[1024]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2944:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(infilename, "tetgen-tmpfile"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:3056:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(outfilename, ".1"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:3065:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(addinfilename, ".a"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:3068:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(bgmeshfilename, ".b"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:4135:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(base + items * itembytes, appitem, itembytes); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:4173:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(base + pos * itembytes, insitem, itembytes); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:4201:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(base + pos * itembytes, // item at pos data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:30656:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outnodefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:30669:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(outnodefilename, ".node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:30688:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(outnodefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:30860:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outmtrfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:30870:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(outmtrfilename, ".mtr"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:30886:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(outmtrfilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:30995:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outelefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31011:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(outelefilename, ".ele"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31030:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(outelefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31177:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char facefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31192:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(facefilename, ".face"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31213:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(facefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31346:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char facefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31357:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(facefilename, ".face"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31374:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(facefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31449:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char facefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31463:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(facefilename, ".face"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31485:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(facefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31608:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char edgefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31620:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(edgefilename, ".edge"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31639:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(edgefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31746:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char edgefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31756:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(edgefilename, ".edge"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31773:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(edgefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31830:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char neighborfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31840:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(neighborfilename, ".neigh"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31857:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(neighborfilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31935:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31953:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(outfilename, ".v.node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:31974:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(outfilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32028:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(outfilename, ".v.edge"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32040:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(outfilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32132:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(outfilename, ".v.face"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32144:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(outfilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32259:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(outfilename, ".v.cell"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32271:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(outfilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32370:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nodfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32371:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char smefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32384:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(smefilename, "unnamed"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32387:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(smefilename, ".smesh"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32388:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(nodfilename, ".node"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32393:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(smefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32477:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mefilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32491:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(mefilename, "unnamed"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32493:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(mefilename, ".mesh"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32498:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(mefilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32624:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char gidfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32637:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(gidfilename, "unnamed"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32639:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(gidfilename, ".ele.msh"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32644:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(gidfilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32699:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(gidfilename, "unnamed"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32701:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(gidfilename, ".face.msh"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32706:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(gidfilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32780:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char offfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32791:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(offfilename, "unnamed"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32793:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(offfilename, ".off"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32798:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(offfilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32859:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vtkfilename[FILENAMESIZE]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32875:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(vtkfilename, "unnamed"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32877:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(vtkfilename, ".vtk"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:32882:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outfile = fopen(vtkfilename, "w"); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:33619:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sbuf[128]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:33899:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(sbuf, "%.17g", biggestfaangle); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:33905:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(sbuf, "%.17g", biggestdiangle); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.h:705:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char commandline[1024]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.h:706:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infilename[1024]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.h:707:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outfilename[1024]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.h:708:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char addinfilename[1024]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.h:709:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bgmeshfilename[1024]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.h:1580:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((void *)(newnode + 1), newitem, linkitembytes); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:88:12: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (fgetc(FDNEUTFile) != '\n'); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:103:12: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (fgetc(FDNEUTFile) != '\n'); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:136:12: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (fgetc(FDNEUTFile) != '\n'); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkFDNEUTReader.cxx:142:12: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (fgetc(FDNEUTFile) != '\n'); data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkPNGWriter.cxx:138:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). new char[(this->FileName ? strlen(this->FileName) : 1) + data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkPNGWriter.cxx:139:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (this->FilePrefix ? strlen(this->FilePrefix) : 1) + data/vmtk-1.3+dfsg/vtkVmtk/IO/vtkvmtkPNGWriter.cxx:140:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (this->FilePattern ? strlen(this->FilePattern) : 1) + 10]; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:747:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(b->innodefilename, argv[i], FILENAMESIZE - 1); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:761:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp(&b->innodefilename[strlen(b->innodefilename) - 5], ".node")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:762:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). b->innodefilename[strlen(b->innodefilename) - 5] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:764:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp(&b->innodefilename[strlen(b->innodefilename) - 5], ".poly")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:765:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). b->innodefilename[strlen(b->innodefilename) - 5] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:769:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp(&b->innodefilename[strlen(b->innodefilename) - 4], ".ele")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:770:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). b->innodefilename[strlen(b->innodefilename) - 4] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:773:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp(&b->innodefilename[strlen(b->innodefilename) - 5], ".area")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/Starbase.c:774:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). b->innodefilename[strlen(b->innodefilename) - 5] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/interact.c:263:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(b->fileprefix, ""); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/journal.c:997:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (filename[strlen(filename) - 5] == '.') data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/journal.c:999:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filename[strlen(filename) - 5] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:458:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). b->innodefilename[strlen(b->innodefilename) - 5] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/output.c:494:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). increment = strlen(b->innodefilename); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1145:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(filename, argv[i], FILENAMESIZE - 1); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1157:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp(&filename[strlen(filename) - 5], ".node")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1158:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filename[strlen(filename) - 5] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1161:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp(&filename[strlen(filename) - 5], ".poly")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1162:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filename[strlen(filename) - 5] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1165:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp(&filename[strlen(filename) - 4], ".ele")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1166:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filename[strlen(filename) - 4] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1169:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp(&filename[strlen(filename) - 5], ".edge")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1170:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filename[strlen(filename) - 5] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1173:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp(&filename[strlen(filename) - 5], ".part")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1174:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filename[strlen(filename) - 5] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1177:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp(&filename[strlen(filename) - 4], ".adj")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1178:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filename[strlen(filename) - 4] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1181:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp(&filename[strlen(filename) - 5], ".data")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:1182:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filename[strlen(filename) - 5] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4198:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(prompt) * 10 + 82, 30, 4, 1); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4205:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (int) strlen(prompt)); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4232:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ((int) strlen(prompt) + num_letters) * 10 + 12, data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4236:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ((int) strlen(prompt) + num_letters) * 10 + 12, data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4243:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ((int) strlen(prompt) + num_letters) * 10 + 12, 9, 6, 10); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4246:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ((int) strlen(prompt) + num_letters) * 10 + 12, 9, 6, 10); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/Stellar_1.0/src/showme.c:4251:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ((int) strlen(prompt) + num_letters) * 10 + 2, data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:908:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(infilename, filebasename, 1024 - 1); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:914:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strcmp(&infilename[strlen(infilename) - 4], ".off") != 0) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1056:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(infilename, filebasename, FILENAMESIZE - 1); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1062:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strcmp(&infilename[strlen(infilename) - 4], ".ply") != 0) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1263:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(infilename, filebasename, FILENAMESIZE - 1); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1269:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strcmp(&infilename[strlen(infilename) - 4], ".stl") != 0) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1395:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(infilename, filebasename, FILENAMESIZE - 1); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1401:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strcmp(&infilename[strlen(infilename) - 5], ".mesh") != 0) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1622:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(infilename, filebasename, FILENAMESIZE - 1); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1628:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strcmp(&infilename[strlen(infilename) - 4], ".vtk") != 0) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:1642:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(line) == 0) continue; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2745:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(commandline, " "); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2754:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(commandline, " "); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2758:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(infilename, argv[i], 1024 - 1); data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2952:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strcmp(&infilename[strlen(infilename) - 5], ".node")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2953:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). infilename[strlen(infilename) - 5] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2955:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } else if (!strcmp(&infilename[strlen(infilename) - 5], ".poly")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2956:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). infilename[strlen(infilename) - 5] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2959:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } else if (!strcmp(&infilename[strlen(infilename) - 6], ".smesh")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2960:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). infilename[strlen(infilename) - 6] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2963:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } else if (!strcmp(&infilename[strlen(infilename) - 4], ".off")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2964:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). infilename[strlen(infilename) - 4] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2967:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } else if (!strcmp(&infilename[strlen(infilename) - 4], ".ply")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2968:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). infilename[strlen(infilename) - 4] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2971:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } else if (!strcmp(&infilename[strlen(infilename) - 4], ".stl")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2972:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). infilename[strlen(infilename) - 4] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2975:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } else if (!strcmp(&infilename[strlen(infilename) - 5], ".mesh")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2976:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). infilename[strlen(infilename) - 5] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2979:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } else if (!strcmp(&infilename[strlen(infilename) - 4], ".vtk")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2980:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). infilename[strlen(infilename) - 4] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2983:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } else if (!strcmp(&infilename[strlen(infilename) - 4], ".ele")) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:2984:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). infilename[strlen(infilename) - 4] = '\0'; data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:33900:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(sbuf) > 8) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/tetgen1.4.3/tetgen.cxx:33906:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(sbuf) > 8) { data/vmtk-1.3+dfsg/vtkVmtk/Utilities/vtkvmtkITK/vtkvmtkITKImageWriter.cxx:307:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). this->FileName = new char[strlen(name) + 1]; ANALYSIS SUMMARY: Hits = 638 Lines analyzed = 166359 in approximately 4.21 seconds (39484 lines/second) Physical Source Lines of Code (SLOC) = 114770 Hits@level = [0] 3126 [1] 78 [2] 410 [3] 0 [4] 150 [5] 0 Hits@level+ = [0+] 3764 [1+] 638 [2+] 560 [3+] 150 [4+] 150 [5+] 0 Hits/KSLOC@level+ = [0+] 32.796 [1+] 5.55894 [2+] 4.87932 [3+] 1.30696 [4+] 1.30696 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.